On World Password Day, Microsoft Says Fewer Passwords, More Passkeys
As we bid farewell to World Password Day, it's time to celebrate a safer and more modern alternative: passkeys. And we agree - if there's one cybersecurity-themed day we'd like to get rid of, it's passwords. Old friend, you're outdated, and it looks like your days are numbered.
Intel introduced World Password Day in 2013 to remind people of the importance of strong passwords. However, over time, the number of passwords we use has grown exponentially, making the system practically unusable without a password manager. Microsoft stepped in with Windows Hello, a new way for users to securely sign in to their accounts using their face, fingerprint, or PIN.
As we move forward from passwords to passkeys, it's time to say goodbye and hello to a safer, simpler authentication method. Passkeys are digital credentials designed to replace traditional passwords with a more modern alternative.
What Are Passkeys?
A passkey is a digital credential that replaces traditional passwords by using cryptographic keys stored locally on your device, such as your phone or computer. When you set up an account or enable a passkey login, a program on your device will create a passkey automatically.
Basically, it's a unique key that identifies you without ever leaving your device. When you log in with a passkey, your device proves you are the legitimate user by using the passkey to solve a challenge without actually providing the passkey itself.
Why Passkeys Are Better Than Passwords
Passkeys offer several advantages over passwords, including a safer login experience. Unlike passwords, passkeys cannot be stolen by fake or malicious websites.
"As the world shifts from passwords to passkeys, we're excited to join the FIDO Alliance in leaving World Password Day behind to celebrate the very first World Passkey Day," said Microsoft.
Using Passkeys Is Straightforward
Using passkeys is not difficult. You don't need to create anything or remember a lot. The authentication process is as simple as unlocking your device.
"Having to create and memorize hundreds of complex, unique passwords is difficult and stressful," said [Microsoft Representative]. "Passkeys remove this burden entirely."
Benefits of Passkeys
Using passkeys offers several benefits, including:
- A safer login experience due to the inability of fake or malicious websites to steal passkeys.
- A faster authentication process.
- No need to create or remember hundreds of complex passwords.
Challenges and Future Improvements
Losing your device can pose a problem, since the passkey is stored on it. However, this issue is being actively worked on to synchronize passkeys across devices.
Many websites and services don't currently support passkeys, but developers and service providers are working to make passkey adoption smoother and more widespread.
Navigating Passkey Systems
Not every passkey system is equal. There are currently multiple flavors of passkey systems, including device-bound and physical token passkeys.
Industry groups, such as the FIDO Alliance and W3C, are working on standards, guides, and tools to improve the situation for developers and users.
Saving Passkeys
To save a passkey, you can use a password manager like Google Password Manager or iCloud Keychain. Ensure you're signed into your Google Account on an eligible device before agreeing to create a passkey when prompted by a website supporting passkeys.