FB pixel

Passkeys will replace passwords entirely soon, experts say

Categories Access Control  |  Biometrics News
Passkeys will replace passwords entirely soon, experts say
 

Passkey technologies will replace passwords entirely over the next few years. The claims come from several experts who shared their views in a recent CACM analysis.

“We’ve had discussions about moving to passwordless for years,” Chester Wisniewski, CTO of Applied Research at cybersecurity firm Sophos, tells the publication. “Finally, through more advanced passkey technology, we have an opportunity to move forward.”

Andrew Shikiar, executive director of the FIDO Alliance, echoed Wisniewski’s point, adding that all legacy frameworks based on a human-readable and shared secret are relatively easy to circumvent. Passkeys, conversely, are based on tokens and cryptographic signatures that work regardless of the user’s knowledge.

“The private key never leaves the device, making phishing or a website data leak a moot point. It almost entirely negates the ability for a credential to be stolen and reused. It also makes it incredibly easy for the typical consumer to adopt and use because it’s incredibly easy to use,” Wisniewski adds.

According to Rik Turner, principal analyst at research firm Omdia, the advantages of passkeys are so clear that they will soon become the standard for both enterprises and consumers.

At the same time, Turner warns that before that happens, a series of technical issues must be resolved, including that passkeys cannot currently be automatically transferred across devices on different platforms. Building on that view, Wisniewski says that, unlike hardware keys, software passkeys still prioritize convenience over airtight identity security.

“A copy exists in the cloud and not on the person,” the Sophos executive says. “The tradeoff is that if your device is lost or stolen, you can still get into accounts.”

Even as these details are being sorted, passkeys are rapidly growing in adoption, with several tech companies already allowing customers to use them as an authentication option. Google, Apple, and Microsoft have each adopted passkeys already.

Article Topics

 |   |   |   |   | 

Latest Biometrics News

 

Best biometrics use cases become clearer as ecosystems mature

Biometrics are for digital identity, socio-economic development, air travel and remote identity verification, but not public surveillance, the most-read news…

 

UK Biometrics and Surveillance Camera Commissioner role survives as DPDI fails

UK parliament will not pass data protection legislation during the current session, following the announcement of the general election in…

 

EU watchdog rules airport biometrics must be passenger-controlled to comply with GDPR

The use of facial recognition to streamline air passenger’s travel journeys only complies with Europe’s data protection regulations in certain…

 

NZ’s biometric code of practice could worsen privacy: Business group

New Zealand is working on creating a biometrics Code of Practice as the country introduces more facial recognition applications. A…

 

Demonstrating value, integrated payments among key digital ID building blocks

Estonia has achieved an enviable level of user-centricity with its national digital identity system through careful legislation and fostering collaboration…

 

Strata Identity launches uninterrupted identity services product

There are a few things that can be more annoying than your office computer logging you out of applications because…

Comments

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.

Most Read This Week

Featured Company

Biometrics Insight, Opinion

Digital ID In-Depth

Biometrics White Papers

Biometrics Events