Passkeys – the future after passwords

Passkeys – the future after passwords: Passkeys are the modern successor to classic passwords. Instead of entering a memorable word, a cryptographic key pair is created:

This innovative technology offers numerous advantages over conventional systems. Imagine never having to remember a password again – that’s one of the biggest benefits of passkeys. It also significantly reduces the risk of cyber-attacks as passkeys cannot be stolen or intercepted in the same way as passwords.

The introduction of passkeys – the future after passwords is a significant step in digital security.

• Private key – remains secure on your device.
• Public key – is held by the online service.

Only digital proof is sent when you log in. You confirm via Face ID, Touch ID or device pin code. There is no longer a password.

Thanks to the use of biometric data, the security of passkeys is much higher. For example, a person who wants to access your device cannot simply guess or steal a password; they must actually physically access your device. This means that even if someone steals your credentials, they won’t be able to access your accounts without physical access to your device.

Passkeys vs. passwords – the big difference

Another fundamental advantage of Passkeys is their user-friendliness. The need to create and memorize complicated passwords is a thing of the past. Instead, you can simply use your face or fingerprint to access your accounts. This is not only faster, but also more secure, as the biometric data is unique and cannot be copied.

Passkeys vs. passwords – the difference

Feature	Classic passwords	Passkeys
Input	Manual input, typing errors & effort	No input – device release (Face/Touch ID or PIN)
Attack possibilities	Phishing Phishing is an attempt to steal other people’s personal data (such as passwords, credit card numbers, etc.) using fake e-mails or websites. EOP can help you block these emails with extended phishing thresholds., data leaks, brute force	Phishing-resistant; cannot be guessed; private key does not leave the device
Reuse	Often used multiple times, risk of leakage	Unique per website/service, not reusable
MFATwo-factor authentication is a mechanism that allows users to verify an attempt to authenticate. The user must provide a one-time code to confirm authentication that is sent to their device. This code is sent, for example, via text message or generated by a code via an app such as Microsoft Authenticator on a smartphone. the Multi-factor authentication ( MFA ),… mehr erfahren necessary?	Often additional code (e.g. SMS/app)	“Multi-factor in one step”: device (possession) + biometrics (inherence)

In short:

In addition, many companies have already started to integrate passkeys to improve the security of their systems. This applies to both small and large companies looking for more effective solutions to secure user data. Passkeys could become the industry standard, similar to what happened with two-factor authentication.

The proliferation of passkeys could also have a positive impact on overall cybersecurity. With fewer passwords for users to manage, they are also less likely to use the same passwords for different services, which is a common target for hackers. The use of passkeys could therefore represent a paradigm shift in the way we think about online security.

A stolen password can be copied and reused – a passkey cannot, because the private key never leaves the device.

Cross-device use

Apple iCloud The Apple cloud service serves as a synchronization unit for your respective Apple products and includes the following services: • Mail
• contacts
• calendar
• photos
• iCloud Drive
• notes
• memories
• friends
• iPhone search
Keychain

• Activate under Settings → Apple ID → iCloud The Apple cloud service serves as a synchronization unit for your respective Apple products and includes the following services: • Mail
  • contacts
  • calendar
  • photos
  • iCloud Drive
  • notes
  • memories
  • friends
  • iPhone search
  → Passwords & Keychain.
• Your passkeys are automatically synchronized end-to-end encrypted on all Apple devices (iPhone, iPad, Mac).
• Login to new devices via iCloud The Apple cloud service serves as a synchronization unit for your respective Apple products and includes the following services: • Mail
  • contacts
  • calendar
  • photos
  • iCloud Drive
  • notes
  • memories
  • friends
  • iPhone search
  and Face ID / Touch ID.

1Password

Sharing: Individual passkeys can be securely shared with other 1Password users – ideal for teams Microsoft Teams enables practical work in a team at any time, any place. The team members are provided with a wide variety of functions to make their work as simple but efficient as possible. Here you can find a YouTube playlist with helpful training videos! Lerne Microsoft Teams mit uns: https://www.oit.rocks/slides/microsoft-teams-grundkurs-2   mehr erfahren or pairs.

Cross-platform: Works on iOSiOS is Apple’s operating system for the iPhones. Further information at Wikipedia: https://de.wikipedia.org/wiki/IOS_(Betriebssystem) mehr erfahren, Android, Windows and macOSThe operating system macOS , previously Mac OS X and OS X , is the operating system from the Californian hardware and software company Apple for laptop and desktop computers of the Mac series. https://de.wikipedia.org/wiki/MacOS mehr erfahren.

Shared use: In family or team vaults, you can share passkeys like passwords, e.g. for company accounts.

Synchronization: Passkeys are provided in encrypted form via the 1Password account on all devices on which you log in with your master password.

Safety compared to MFATwo-factor authentication is a mechanism that allows users to verify an attempt to authenticate. The user must provide a one-time code to confirm authentication that is sent to their device. This code is sent, for example, via text message or generated by a code via an app such as Microsoft Authenticator on a smartphone. the Multi-factor authentication ( MFA ),… mehr erfahren

Two-factor authentication (MFATwo-factor authentication is a mechanism that allows users to verify an attempt to authenticate. The user must provide a one-time code to confirm authentication that is sent to their device. This code is sent, for example, via text message or generated by a code via an app such as Microsoft Authenticator on a smartphone. the Multi-factor authentication ( MFA ),… mehr erfahren) combines password + additional code.

In addition to the benefits of passkeys, there are also some challenges that need to be overcome. For example, users need to ensure that their devices are secure, as the loss of one device can mean the loss of all passkeys stored on it. It is therefore important that users also familiarize themselves with other security measures such as device protection and regular software updates.

Passkeys are multi-factor in one step:

• Ownership factor: your device.
• Inherence factor: your biometric release.

This eliminates the need for vulnerable SMS codes or app tokens.

Conclusion

Passkeys make phishing Phishing is an attempt to steal other people’s personal data (such as passwords, credit card numbers, etc.) using fake e-mails or websites.
EOP can help you block these emails with extended phishing thresholds. and password theft superfluous.

With Apple iCloud The Apple cloud service serves as a synchronization unit for your respective Apple products and includes the following services: • Mail
• contacts
• calendar
• photos
• iCloud Drive
• notes
• memories
• friends
• iPhone search
or 1Password, you can use them on all devices and – if desired – share them securely in teams Microsoft Teams enables practical work in a team at any time, any place. The team members are provided with a wide variety of functions to make their work as simple but efficient as possible. Here you can find a YouTube playlist with helpful training videos! Lerne Microsoft Teams mit uns: https://www.oit.rocks/slides/microsoft-teams-grundkurs-2   mehr erfahren or families.

While the adoption of passkeys is still in its infancy, it is important to be aware of the associated benefits and challenges. Technology is constantly evolving and it is crucial that users and organizations adapt to ensure the best possible security.

👉 Switch now and make your logins future-proof! Passkeys – the future after passwords.

To ease the transition, many platforms offer comprehensive guidance and support for users looking to switch to Passkeys. It is advisable to make use of the resources available to ensure a smooth transition and take full advantage of the new technology.

Dieser Beitrag ist auch verfügbar auf: Deutsch (German)