44% of organizations use or plan to use static API keys and 43% use or plan to use username/password combinations for agents.

57% of global users still do not use passwordless authentication as their primary method.

Japan ranks #1 in the proportion of organizations using passwordless as the primary authentication method.

90% of global organizations reported challenges in moving toward passwordless authentication.

Germany's Bundesagentur für Arbeit saw 181% growth in passkey authentications.

Microsoft's decision to make passkeys the default sign-in method drove 120% growth in passkey authentications.

Gemini's passkey authentications grew by 269% after making passkeys mandatory for all users.

HubSpot has seen a 25% improvement in login success rates over passwords.

E-commerce platforms represent approximately 45% of all passkey authentications, led by Amazon's commanding 39.9% share.

Passkey authentications have more than doubled year over year to 1.3 million per month.

Roblox's passkey authentications grew by 856%, representing the most dramatic surge in the dataset.

The average person now manages 301 passwords across their personal and work accounts.

40% of Dashlane users now store at least one passkey, double the rate from just a year ago.

8.5% of open-source Model Context Protocol (MCP) server implementations adopt modern and secure authentication methods, such as OAuth.

33% of organizations flagged authentication problems as the most common API security problem.

Only 26% of respondents consider usernames and passwords to be the most secure authentication method.

In the UK, 37% of respondents believe hardware security keys and device-bound passkeys are the most secure authentication methods, up from 17% in 2024 (a 20-point increase).

In the US, 34% of respondents identify hardware security keys/passkeys as the most secure option, up from 18% last year (a 16-point increase)

Usernames and passwords are used by 56% of respondents as an authentication method for work accounts.

Usernames and passwords are used by 60% of respondents as an authentication method for personal accounts.