GeroWallet Adds PassKeys as Cardano Wallet Security Shifts Toward Passwordless Protection

GeroWallet has added new security functions for Cardano users as wallet safety becomes a more active topic across the ecosystem. The latest focus is PassKeys, a passwordless authentication method that uses device-level security features such as Face ID, Touch ID, Windows Hello, fingerprint verification or a local PIN instead of repeated password entry.

GeroWallet is a non-custodial Cardano wallet that supports staking, swaps, NFT management, governance participation, hardware wallet connections and crypto card features. The update is designed to reduce reliance on traditional passwords while keeping wallet control with the user.

GeroWallet PassKeys Reduce Password Exposure

GeroWallet introduced PassKey authentication as part of its Gero Dashboard 2.6.2 security upgrade, together with PIN, pattern unlock, spending password options and auto-lock protection. The wallet also applies lock settings per wallet, allowing users to set different protection levels for different accounts inside the same dashboard.

PassKeys change the authentication model because users no longer need to type a reusable password every time they unlock access. FIDO standards use public key cryptography, where each passkey is unique and bound to the service domain, while biometric data remains on the user’s device.

For crypto wallets, that difference matters because passwords can be exposed through phishing pages, keyloggers, reused credentials or compromised storage. PassKeys do not remove every hot wallet risk, but they reduce one of the most common attack surfaces, the reusable secret that a user has to remember, enter and protect.

The update also strengthens GeroWallet’s position as a Cardano wallet product focused on daily usability. Users can stake, swap, manage tokens and connect with Cardano applications, while the authentication layer moves closer to the security experience already used in modern devices.

CIP-186 Adds a Path for Mobile Cardano Signing

GeroWallet was also highlighted by developer deci as an early wallet provider integrating CIP-186 deep-link wallet signing. The proposal is designed to let native mobile dApps ask an installed Cardano wallet to sign transactions or data through operating system deep-link mechanisms, without relying on a relay server, embedded webview, QR flow or private bilateral connector.

The Cardano Forum draft describes CIP-186 as an extension path for CIP-30, which has mainly served browser-based wallet connections through injected JavaScript. Native iOS and Android applications do not have the same standard signing path, which has pushed developers toward fragmented alternatives.

If adopted more widely, deep-link signing can make mobile Cardano applications easier to connect with wallets while keeping the signing step inside the wallet interface. That is relevant for users because transaction review, message signing and app authorization remain visible at the wallet layer instead of being hidden inside a weaker mobile workaround.

GeroWallet’s iOS app is currently presented as a beta with limited TestFlight seats, while the browser extension remains available for desktop users. The mobile page describes the iOS version as a full Cardano wallet experience for portfolio tracking, staking, swaps, sends and governance participation.

Cardano Wallet Security Expands Across More Layers

GeroWallet’s security model is not limited to PassKeys. The platform lists support for Ledger, Trezor and Keystone hardware wallets, allowing users to sign transactions while private keys remain on dedicated hardware devices.

The wallet also includes Cardano Shield, an open-source protection layer built into Gero Dashboard that is designed to detect phishing websites, malicious dApps and scam domains using machine learning modules and community insights.

The practical result is a broader security stack for Cardano users, with PassKeys for wallet access, auto-lock and wallet-level controls for local protection, hardware wallet support for stronger custody, and Cardano Shield for suspicious interaction detection. The update moves security closer to the exact moments where users are exposed, unlocking the wallet, signing transactions, connecting to applications and approving activity on mobile or desktop.

GeroWallet’s latest update changes the wallet flow from repeated password entry toward device-backed authentication and standardized signing paths. For Cardano users, the practical change is clearer at the transaction level, fewer reusable secrets, stronger local authentication and a wallet interface that keeps approval inside the place where users already manage their assets.