Agreed, although I can see it being used for router web interfaces only. It is possible to use public/private key cryptography to connect to wireless networks, however that is likely something that most consumer routers do not support, and something that is used for enterprise environments.
Does Apple itself support Apple Passkey? I would love to set up a Passkey for both my Apple ID and computer login screen. I have not figured out how to do it. If you know, that would also be a useful video. Thank you for this video.
I hope most of the websites are going to adopt passkeys quickly. I'm so annoyed of changing passwords due to leaks especially after the latest LastPass leak. I stopped using single password for every account and started using LastPass manager to store my passwords safely and yet again I have to change passwords on every site I have account on...
If you convert your eBay or google account to using passkey, then can you still login with your password? Or that becomes disabled? (I'm guessing it becomes disabled.)
So if you lose your phone or it gets stolen can someone else access your bank details? Same as if you use someone elses PC and get authocated can you access their details? If you break your phone and get a new one you have to go through all this process again and will that be complicated? I thin hackes will be already working on ways to get round this, they are clever and it seems at the moment there are still holes in this system.
I have never been more confused. I have no ideal what I’m doing. Literally typing some, Face recognition works on some & trying to set-up pass keys/ finger print because Face recognition works 1/2 way. I think I was try to change my passwords on the wrong screen to. I didn’t know in there was what just saved them.
Yeah....who guarantee that the keys stored in your device (later uploaded to iCloud) is only signed by your device and NOT also signed by Apple???? Because in that case.... Apple also will have access to your private key then....to anyone that pressure Apple into providing that access. Do not trust this system, passwords are painful but ....as they said, if you dont feel the pain then probably something is wrong.
What happens if you switch from iOS to android, and all your passwords are now past keys. How do you access any accounts that are online, if you don’t have a password anymore?
How about kids can use passwords so they don't have to rely on their parents not buying them a phone to gain access to the services they use? Stop treating passwords like some dirty secret. They are the norm for a reason. Passkeys are just a waste of time and an attempt to make logging in even harder than it would be with regular 2FA. You shouldn't need more than a password to gain access to your accounts. When someone steals your phone or it gets lost or broken, you CAN'T log in if you rely on these stupid passkeys. Please stop promoting this nonsense. There are better things you can do with your channel and your time.
Based on the recent WSJ videos on stolen iPhones, changing iPhone passcode, changing or generating recover keys can the thief use the passkey stored in keychain? Is the passkey any safer than a password stored in keychain?
I've tried several times and it doesn't work. I scan the QR Code to log into my desktop account. On my phone, it asks which account. (I only have one by the way), The user face shows a blue dot, I click there - nothing happens ?
So this is the facial recognition that Frank Abingail said would replace passwords. Passkey = Users Face Keychain = Company that stores the users Face biometics. Which means every time I want to get on the internet I need to get permission from Apple and Apple will monitor and log every site that I go to. Guess this pretty much makes VPNs useless? Good bye privacy
That's my concern too. It increases Apple's control over my system and removes my options on a machine I supposedly own. I've never trusted keychain and I don't log into iCloud because Apple is always trying to copy my whole hard drive onto iCloud. I'd have to be drunk or impaired to fall for a phish. And it's more likely that I'll find myself in a hospital emergency room without my device than that Mr Robot is going to crack my 20 word 1pass master password.
Anthony, you glossed over the requirements for implementing passkeys. Although you mentioned Face and Touch ID you failed to emphasise the fact for those users who have not set up and activated them. No doubt there are many users in that category.
I don’t want to keep my Passkey private keys in Apple’s Keychain and sync it to iCloud, because I don’t trust Apple’s software, as it is not Opensource. I’d rather have my private keys in the device’s TPM chip. Is there an option to do so in iOS 16?
I am not yet running IOS 16, so I cannot check for sure, but as far as I understand things, the Secure Enclave is not used to store any passkey information, for the simple reason that it likely doesn’t have the storage space to store an arbitrary number of account passkeys, whereas iCloud Keychain data is stored on the device’s storage. I am pretty sure that the Secure Enclave is used to decrypt the iCloud keychain data to allow the use of the passkey.
That doesn’t make sense. There has never been an incident of Apple using your passwords. Why would they use your Passkeys? It would ruin their business. Apple is based on security and privacy. It is their business model. Pay attention!
@@iankastelic5146 it’s a matter of trusting vs. not trusting. There are technologies which don’t require any trust, because all components and the source code can be verified. Why would anyone prefer a technology, where users must rely on trusting a mega corporation?
@@iankastelic5146 Good security does not rely on trust. Rather, it relies on cryptography. So, if we have to discuss whether Apple is trustworthy or not, it's not good security.
Passkeys are all about locking you in to whoever is managing your keys. If you turn on iCloud for passwords, you're basically locking yourself into iCloud subscriptions for life, as you can be sure Apple won't be giving you a tool to export all of them to another key manager (e.g. Chrome/Google)
![ได้เวลา! พาน้องแฝดฉีดวัคซีนครบ 1 เดือน🫣 [cc] แดนแพทตี้ SS2 | EP.52 |](http://i.ytimg.com/vi/IzeLtaXBLNE/mqdefault.jpg)
You lost me at 2:36. You jumped to a screen that says “what is a passkey”, and has a sign in or sign up section. No explanation how you got there?
Same here
They should also implement this to wifi routers! That should make things more secure with a higher encryption enabled
Agreed, although I can see it being used for router web interfaces only. It is possible to use public/private key cryptography to connect to wireless networks, however that is likely something that most consumer routers do not support, and something that is used for enterprise environments.
Underrated video. Most videos are explaining the advantage of passkeys, but people seem to want to see how they actually work. Very well shown!
Does Apple itself support Apple Passkey? I would love to set up a Passkey for both my Apple ID and computer login screen. I have not figured out how to do it. If you know, that would also be a useful video. Thank you for this video.
I hope most of the websites are going to adopt passkeys quickly. I'm so annoyed of changing passwords due to leaks especially after the latest LastPass leak. I stopped using single password for every account and started using LastPass manager to store my passwords safely and yet again I have to change passwords on every site I have account on...
If you convert your eBay or google account to using passkey, then can you still login with your password? Or that becomes disabled? (I'm guessing it becomes disabled.)
So if you lose your phone or it gets stolen can someone else access your bank details? Same as if you use someone elses PC and get authocated can you access their details? If you break your phone and get a new one you have to go through all this process again and will that be complicated? I thin hackes will be already working on ways to get round this, they are clever and it seems at the moment there are still holes in this system.
I have never been more confused. I have no ideal what I’m doing. Literally typing some, Face recognition works on some & trying to set-up pass keys/ finger print because Face recognition works 1/2 way. I think I was try to change my passwords on the wrong screen to. I didn’t know in there was what just saved them.
Yeah....who guarantee that the keys stored in your device (later uploaded to iCloud) is only signed by your device and NOT also signed by Apple???? Because in that case.... Apple also will have access to your private key then....to anyone that pressure Apple into providing that access.
Do not trust this system, passwords are painful but ....as they said, if you dont feel the pain then probably something is wrong.
Great help on passkeys. I’m going to let it age a bit. I’d love more videos on Apple Watch which is new to me.
What happens if you switch from iOS to android, and all your passwords are now past keys. How do you access any accounts that are online, if you don’t have a password anymore?
How about kids can use passwords so they don't have to rely on their parents not buying them a phone to gain access to the services they use?
Stop treating passwords like some dirty secret. They are the norm for a reason. Passkeys are just a waste of time and an attempt to make logging in even harder than it would be with regular 2FA. You shouldn't need more than a password to gain access to your accounts. When someone steals your phone or it gets lost or broken, you CAN'T log in if you rely on these stupid passkeys.
Please stop promoting this nonsense.
There are better things you can do with your channel and your time.
But how do u take it off?
Based on the recent WSJ videos on stolen iPhones, changing iPhone passcode, changing or generating recover keys can the thief use the passkey stored in keychain? Is the passkey any safer than a password stored in keychain?
eBay didn’t ask me that
If for whatever reason Passkey can’t authenticate using FaceID, does ask for the iPhones passcode?
If I were to guess, I would say yes - most likely.
How do I set up passkeys to sign in my apps
I've tried several times and it doesn't work. I scan the QR Code to log into my desktop account. On my phone, it asks which account. (I only have one by the way), The user face shows a blue dot, I click there - nothing happens ?
Computer gets infected with malware and poof, hackers have access to all my accounts?
Thx a lot 🎉
You can import into keychain, you do it through desktop Safari on Mac.
Why doesn't my account binance open when he gives me a barcode and I don't know what it is?
Can you help me ?
Hello, thanks for the explanation, but how can I make a pass key from a specific account I have with two factors
You lost me at #2. What do you mean by creating a new account? go to a site? on the iphone?
i do not have any Bitwarden, so case closed..
So this is the facial recognition that Frank Abingail said would replace passwords. Passkey = Users Face
Keychain = Company that stores the users Face biometics.
Which means every time I want to get on the internet I need to get permission from Apple and Apple will monitor and log every site that I go to.
Guess this pretty much makes VPNs useless?
Good bye privacy
That's my concern too. It increases Apple's control over my system and removes my options on a machine I supposedly own. I've never trusted keychain and I don't log into iCloud because Apple is always trying to copy my whole hard drive onto iCloud. I'd have to be drunk or impaired to fall for a phish. And it's more likely that I'll find myself in a hospital emergency room without my device than that Mr Robot is going to crack my 20 word 1pass master password.
But I use chrome as an ApPLE user
Cheers mate, very helpful & informative video,...⭐👍⭐👍⭐👍⭐👍⭐👍⭐👍⭐👍⭐👍
Anthony, you glossed over the requirements for implementing passkeys. Although you mentioned Face and Touch ID you failed to emphasise the fact for those users who have not set up and activated them. No doubt there are many users in that category.
Very good point, thank you.
Passkeys. The wave of the future!
Set up passkeys on Android
Excellent. Thank you!!
I don’t want to keep my Passkey private keys in Apple’s Keychain and sync it to iCloud, because I don’t trust Apple’s software, as it is not Opensource. I’d rather have my private keys in the device’s TPM chip. Is there an option to do so in iOS 16?
I am not yet running IOS 16, so I cannot check for sure, but as far as I understand things, the Secure Enclave is not used to store any passkey information, for the simple reason that it likely doesn’t have the storage space to store an arbitrary number of account passkeys, whereas iCloud Keychain data is stored on the device’s storage. I am pretty sure that the Secure Enclave is used to decrypt the iCloud keychain data to allow the use of the passkey.
That doesn’t make sense. There has never been an incident of Apple using your passwords. Why would they use your Passkeys? It would ruin their business. Apple is based on security and privacy. It is their business model. Pay attention!
@@iankastelic5146 it’s a matter of trusting vs. not trusting. There are technologies which don’t require any trust, because all components and the source code can be verified. Why would anyone prefer a technology, where users must rely on trusting a mega corporation?
@@iankastelic5146 Good security does not rely on trust. Rather, it relies on cryptography. So, if we have to discuss whether Apple is trustworthy or not, it's not good security.
GREAT!
Passkeys are all about locking you in to whoever is managing your keys. If you turn on iCloud for passwords, you're basically locking yourself into iCloud subscriptions for life, as you can be sure Apple won't be giving you a tool to export all of them to another key manager (e.g. Chrome/Google)
You do not need to pay for iCloud subscriptions to do that. Also, you can just airdrop or share your passkeys with yourself using other means.
Use a 3rd party app like 1Password