The downsides to using passkeys

No Comments
Password key image

Passkeys is an a relatively new authentication standard by an alliance of companies that reads like the Who’s Who of Tech.

Passkeys are created on user devices and remain there, and all it takes to sign-in is to select the right one to login to services and websites. Passwords are no longer required and that is one of the main advantages of the feature.

Passwords are traditionally stored as hashes on servers. When a user enters a password, the hash is generated and compared to the data on the server. This leads to disadvantages, including that a successful server breach may give criminals access to the hashes, which may be cracked to reveal the passwords. Also, passwords may be brute forced and phishing attacks are common to steal passwords from users.

All of these forms of attacks do not work against passkeys. The server does not store the required data anymore and users do not enter passwords. Brute forcing is also not possible.

While passkeys improve security, users need to be aware of some downsides associated with them. Some of these are temporary in nature, others may pose a permanent problem.

  1. Passkeys are device specific. Syncing functionality is not widely available yet, but many password managers and also operating systems may support syncing eventually.
  2. Most websites and apps do not support passkeys. This too will change in the future as support is spreading. For now, only some sites and services support the security feature.
  3. Losing access to a device. If a user loses access to all their devices, they may have troubles recovering account access. Most sites and services support account recovery options if a password has been forgotten. Similar functionality may be provided for passkeys, and this may involve providing IDs or other forms of legitimation. Passkeys to support recovery keys, but these need to be saved by the user actively.

Photo Credit: Dr. Cloud/Shutterstock

'The downsides to using passkeys' first appeared in Weekly Tech Insights, a free weekly newsletter that you can sign up to here.

No Comments

Comments are closed.

Got News? Contact Us

Recent Headlines

How threat intelligence can improve vulnerability management outcomes

Ubuntu Linux-based Voyager 24.04 LTS unites GNOME and Xfce

Kioxia unveils TransMemory U304 USB flash drive

Microsoft and Estée Lauder transform the beauty industry with AI

Microsoft and IBM open source MS-DOS 4.00

Software file converters: How they work and why you need them

Human risk management automation can help beat burnout

Most Commented Stories

Say goodbye to Microsoft Windows 11 and hello to Nitrux Linux 3.4.0 'pl'

62 Comments

The stunning Windows 13 -- yes, 13! -- is the Microsoft operating system we want

22 Comments

Microsoft 'improves' Windows 11 by bringing ads to the Start menu in the US

21 Comments

Windows 11 slammed for its 'comically bad' performance even on high-end hardware

18 Comments

Microsoft is up to its old tricks yet again -- Windows 10 users harassed with full-screen Windows 11 upgrade warnings

18 Comments

Outrageous: Microsoft to charge $61 for Windows 10 updates -- consider switching to Linux!

18 Comments

Microsoft releases preview version of Office 2024 for Windows and macOS -- download it now!

17 Comments

Easter giveaway! Get a licensed copy of 'VideoProc Converter for Windows/Mac' (worth $78.90) for FREE

10 Comments

© 1998-2024 BetaNews, Inc. All Rights Reserved. Privacy Policy - Cookie Policy.