I recently came across info about ditching passwords and 2FA for email accounts. It’s a bit confusing. They say not to use SMS 2FA but also to keep 2FA on. What’s the deal with Passkeys? Are they just fancy words for things like Face ID on phones? How does this work on computers? I’m lost about what to do to keep my accounts safe. There was mention of physical keys too but it’s unclear if that’s the only option. Not all services support those anyway. Can someone break this down in simple terms? What steps should average users take to improve their email security?
As someone who’s been using passkeys for a while now, I can say they’re a game-changer.
Essentially, passkeys use cryptographic keys instead of traditional passwords. Your device generates and stores these keys, and you authenticate using biometrics or a PIN.
The main advantage is that you don’t need to remember complex passwords or worry about them being stolen in data breaches. It’s more secure and convenient.
For services that don’t support passkeys yet, I’d recommend using a password manager to generate and store strong, unique passwords for each account. Pair this with an authenticator app for 2FA instead of SMS.
Physical security keys are great but not necessary for most users. They’re mainly for high-risk individuals or sensitive accounts.
The transition might seem daunting, but it’s worth it for the improved security and ease of use.
passkeys r secure tech that replace passwords by using your device’s builtin features (face id, fingerprint readers, or usb keys on comps). not all services support em yet, but they’re improving. meanwhile, u can use strong, uniq passwords & an authenticator for extra safety.
Passkeys are indeed a step forward in account security. They use public-key cryptography to create a unique digital key for each account, stored securely on your device. When you log in, you simply verify your identity using your device’s built-in authentication methods.
The beauty of passkeys is that they’re resistant to phishing and eliminate the need for remembering complex passwords. They’re not just fancy words for Face ID - they work across devices and platforms.
For now, a pragmatic approach is to use a password manager for generating strong, unique passwords, coupled with an authenticator app for 2FA where passkeys aren’t supported. Avoid SMS 2FA when possible due to its vulnerabilities.
Physical security keys are an option for those needing extra security, but they’re not necessary for most users. As passkey adoption grows, we’ll likely see a gradual shift away from traditional passwords and towards this more secure, user-friendly system.