The traditional password model is broken. Relying on users to create complex secrets and transmitting them over the network is an outdated practice that invites phishing, data breaches, and account takeovers. In an era where privacy is paramount, we need a fundamental shift in how we handle user identity.

This talk introduces a robust framework for passwordless encryption on Android. We will explore how to move away from "shared secrets" and toward a model where the device proves the user's identity without ever revealing the private credentials to the server.
In this session, we will cover:
- The Failure of Legacy Auth: Why sending and storing passwords—even hashed ones—is a security liability.
- The Passwordless Shift: Implementing cryptographic verification (powered by Zero-Knowledge principles) to authenticate users securely.
- Android Implementation: A practical guide to integrating passwordless flows into your mobile apps.
- Beyond Login: How to apply this privacy-first approach to verify sensitive data, like age or medical records, without exposing the raw information.

Join us to learn how to deprecate the password and build the next generation of secure, user-friendly Android applications.