Stytch Pivoting to Hybrid Identity
Stytch
This weakens passwordless as a standalone wedge, and pushes Stytch to win as a broader identity and risk platform instead. In practice, large apps rarely flip a switch from passwords to passkeys overnight. Product teams need email links, SMS codes, social login, passkeys, and passwords running side by side so older users, support teams, and legacy account recovery flows still work. That makes migration tooling, fraud controls, and flexible orchestration more valuable than any single login method.
-
Stytch added passwords after seeing enterprise deals stall on full password removal. About 50% of customers now run hybrid setups, while around 90% of end users still choose passwordless when it is offered. The bottleneck is not user preference alone, it is change management inside customer organizations.
-
This pattern mirrors the broader market. Clerk supports passwords, passkeys, magic links, OTP, and social login in one stack, and WorkOS AuthKit bundles email and password with magic links, OAuth, and enterprise SSO. The winning product is the control panel for mixed auth, not a pure passkey feature.
-
Bundled cloud products make the same point from the low end. Amazon Cognito prices by MAU, includes a 10,000 MAU free tier for direct or social sign in, and supports password based flows alongside newer options. When fallback methods remain mandatory, core auth gets easier to compare on price.
The next step is a market where passwords keep shrinking, but hybrid identity remains the norm. That favors vendors that can manage migration, fraud, enterprise SSO, delegated agent access, and policy in one system. Stytch is already moving in that direction, turning passwordless from the headline feature into one module inside a larger identity layer.