Signing back into the Community for the first time? You'll need to reset your password to access your account. Find out more.

Forum Discussion

datx

New Contributor

2 years ago

What am I missing with passkeys?

I am finally getting around to putting passkeys into action.. but something isn't adding up. As a low risk test, I added a passkey to a bestbuy account. Started up an incognito session, and logge...

browser extension

XIII

Super Contributor

2 years ago

Passkeys solve the problem by formalizing the agreement that "something you have" is now a requirement, and that's the end of it, no more 2FA.

Actually passkeys can still be 2FA, if the RP (relying party) requires User Verification (biometric or PIN):

Passkeys are kept on a user’s devices (something the user “has”) and — if the RP requests User Verification — can only be exercised by the user with a biometric or PIN (something the user “is” or ”knows”). Thus, authentication with passkeys embodies the core principle of multi-factor security.

Source: FIDO Alliance FAQ on passkeys.

Forum Discussion

What am I missing with passkeys?

Recent Discussions

1Password Extension Hijack

limiting search

Generated secure password should include a number

Search email accounts as logins

Expiry date