What Are Passkeys? Explained in 2 Minutes

Have you tried Passkeys yet? 🤔

Passkeys are a lot better than passwords for the regolar user but... if you use passwords for *professional* applications, please use *passwords* plus a 2FA method like hardware authentication tokens, OTP applications and so on. Do not use Passkeys for critical, professional, company/corporate-level apps. For this kind of applications, you need a simple, reliable way to make a *backup* of your keys and a simple, reliable way to recover a failed/compromised system (if/when needed). Having these failsafe options is not so easy when you use passkeys (and *only* passkeys).

So is it like when you want to log into something on your computer, you get a notification on your phone or something like that. Then you do face ID and it logs you in?

I also use multiple yubikeys too for multi factor authentication.

The fact that this currently relies on the big companies for authenticating makes me suspect. As someone who uses 2FA and has complex pseudo randomly generated passwords, I'm not convinced this is better.

What about the biometric data that are stored to be able to match the biometric input on the device? Can't they be stolen as well? And isn't that worst? Once your account has been compromised, it's bad, but you lost an account (and all the contained information). But once your unique biometric data have been compromised, you can't replace them, and you won't be able to used them elsewhere forever. Or am I missing something here?

TERRIBLE idea. Once they figure out how to "spoof" the passkeys? We're ALL fucked. Now, I have dozens of passwords, so if hackers manage to find one, they don't have ALL OF THEM. If they spoof my passkey, they have access to EVERYTHING I have access to... banks, investments, social media... everything.

To be clear, unless passwords are completely removed from the account creation/login process, surely I'm no more secure than I was before...? If someone has my password and breaks my 2FA then I'm still screwed, whether I have a separate login mechanism set up or not.

Yeah the video was helpful I found out what me losing my other phone it's a pain in the ass forgetting my account I still can't get in my Shopify account 😒😒😒

Actually, losing your device isn't an issue. Passkeys are backed up to your google or apple account.

thank you

People have been using physical keys for millenia, so it should be easier for non tech savy people

Yes thank you

What about malware or Zero-day bugs....Giving Criminals access to your phone without your permission. Seems they could take over your accounts without much effort using Passkey. Security is not about being easy..instead it should be layers of road-blocks for criminals to overcome.

Just remember that one pass to your google or iCloud and you can sign in on a new phone and you’re good. Simple

I'll pass on the potential for anything harrowing, lol.

No. Remembering your passwords is easy if you use a password manager. Also, if your password is sufficiently long and non-predictable something of only 16 characters can take centuries to brute-force.

Super

Yubikey is way better.

Can we do password managers and passkeys together?

Where is the How dude

Hi

I like it

❤

The video doesn't explain why it would be a "harrowing" task to restore access to your accounts. This brief statement on its own is enough for me to say, "Nope." Hopefully an expert (not an armchair cyber guy) can change my mind.

best

😊

FF

Hellw brother I need you help some one from urp she trak my phone

thank you