13.02.2025 09:28:00
Дата публикации
Passkey technology, promoted as a secure alternative to passwords, faces usability challenges. According to Ars Technica, a recent study revealed that passkeys do not meet expectations and create difficulties for users.
Developed on a cryptographic foundation, passkeys promised to simplify authentication while enhancing security and reducing the risk of data breaches. However, inconsistent implementation across operating systems and browsers has led to confusion. For instance, logging into PayPal via passkey differs on Windows and iOS, while Firefox lacks support entirely.
Syncing passkeys across devices is another issue. Some services force users to rely on built-in password managers, restricting their choices. On macOS, Chrome stores passkeys in Apple Keychain, making them inaccessible on Android devices. Additionally, macOS strongly pushes iCloud storage, even when users prefer USB security keys.
Despite their potential benefits, passkeys do not completely eliminate passwords. Many services still require them as a backup authentication method, making systems vulnerable to traditional password attacks.
Experts highlight that the lack of a unified approach to passkey synchronization and management reduces their effectiveness. Developer David Heinemeier Hansson called passkeys a "half-baked solution" that locks users into specific platforms.
The study also found that many services supporting passkeys still rely on insecure two-factor authentication methods, such as SMS codes, undermining their advantages.
Experts predict that widespread passkey adoption will take several years. Meanwhile, passwords remain the dominant authentication method, with password managers and security keys offering the most practical solution.
Despite current issues, passkeys continue to evolve. Companies aim to improve cross-platform compatibility, but the technology is not yet ready for mainstream use.
Developed on a cryptographic foundation, passkeys promised to simplify authentication while enhancing security and reducing the risk of data breaches. However, inconsistent implementation across operating systems and browsers has led to confusion. For instance, logging into PayPal via passkey differs on Windows and iOS, while Firefox lacks support entirely.
Syncing passkeys across devices is another issue. Some services force users to rely on built-in password managers, restricting their choices. On macOS, Chrome stores passkeys in Apple Keychain, making them inaccessible on Android devices. Additionally, macOS strongly pushes iCloud storage, even when users prefer USB security keys.
Despite their potential benefits, passkeys do not completely eliminate passwords. Many services still require them as a backup authentication method, making systems vulnerable to traditional password attacks.
Experts highlight that the lack of a unified approach to passkey synchronization and management reduces their effectiveness. Developer David Heinemeier Hansson called passkeys a "half-baked solution" that locks users into specific platforms.
The study also found that many services supporting passkeys still rely on insecure two-factor authentication methods, such as SMS codes, undermining their advantages.
Experts predict that widespread passkey adoption will take several years. Meanwhile, passwords remain the dominant authentication method, with password managers and security keys offering the most practical solution.
Despite current issues, passkeys continue to evolve. Companies aim to improve cross-platform compatibility, but the technology is not yet ready for mainstream use.
(the text translation was done automatically)
