Pattern 03
Progressive passkey enrollment
Offer passkey enrollment at three specific, high-motivation moments: right after a successful login, right after a successful account recovery, and as a persistent option in account settings.
Problem
Prompting for passkey enrollment during signup — before any trust is established — produces high abandonment and low completion.
Recommendation
Offer passkey enrollment at three specific, high-motivation moments: right after a successful login, right after a successful account recovery, and as a persistent option in account settings.
UX impact
Enrollment prompts land when users are already reassured the product works, raising acceptance without adding friction to signup.
Security impact
Grows the phishing-resistant user base steadily without forcing a risky, unfamiliar step onto brand-new or anxious users.
Implementation notes
Cap prompt frequency (e.g. once per session, dismissible for 30 days), and always pair the prompt with a one-line plain-language benefit statement.