PKCE (Proof Key for Code Exchange) is an OAuth 2.0 extension designed to enhance the security of public clients by preventing authorization code interception attacks. It achieves this by using a dynamically generated secret, called a code verifier, which is transformed into a code challenge and verified during the token exchange process.