top | item 35988593

(no title)

Does the crowd on HN expect passkey support to become more ubiquitous in the future, similar to Google OAuth today?

I’ve been surprised at how few sites seem to be adopting rapidly since there are UX gains, but I suppose Google had a fairly slow trajectory as well.

discuss

ttul|2 years ago

Apple’s push is enough to convince me that this will be a default soon. Adoption has been slow because it takes some effort and the payoff isn’t immediately obvious. This new service from 1Password might start to change that. I expect others will follow with similar ideas.

bombcar|2 years ago

Apple Pay but for passwords!

It will take over slowly, especially if they handle the edge cases well. Explaining passwords to people is a pain.

mooreds|2 years ago

I think once the account recovery problems, aka "oh no, dropped my phone in a pond, now I can't login", are resolved, it'll take off.

I've used it for some sites and it is pretty cool to not have to remember anything. Fingerprint readers are a bit touchy, but seem to be getting better.

I also think that it is far far easier than a password manager, the current go-to secure solution today.

CharlesW|2 years ago

> I think once the account recovery problems, aka "oh no, dropped my phone in a pond, now I can't login", are resolved, it'll take off.

The same recovery methods used for passwords also work for passkeys, e.g. as sending a link in an email or text message to create a new passkey.

In the "oh no, dropped my phone in a pond" scenario, my passkeys are already synced across devices via the cloud, so I would not have to create new passkeys.

teeray|2 years ago

Big tech is salivating over the vendor lock this will enable, so there will be a big push for it. I’m just hoping password managers will allow us to store the key material in them so that cross-platform can work.

CharlesW|2 years ago

> Big tech is salivating over the vendor lock this will enable…

This enables vendor lock-in as much as passwords do. That is to say, not at all.

Example: Chrome supports passkeys, but uses a Chrome-only passkey store instead of the OS one. So I have one passkey for Chrome, and another for macOS/iOS.

toomuchtodo|2 years ago

Yes. To enable in Auth0, it's two checkboxes. For something more bespoke it's a few days of engineering time.

https://techcrunch.com/2023/05/03/google-now-lets-you-access...

https://passkeys.directory/

(managing passkey rollout at a fintech for customer iam)

timeimp|2 years ago

Once Apple and Google have pushed it out with their mobile devices, things will move along fast.

I'd argue within 5-ish years you'll start encountering people who have never used a username + password combo at all.

Passkeys are the future - but how they will work across ecosystems remains to be seen (without a subscription)

barkerja|2 years ago

Passkey support has been on iOS since the release of iOS 16 -- so more than a half-year!

Google has actually had support for passkey for many many months now, but for whatever reason, waited to formally announce it until just recently.

Cross-platform is also already solved. See the FAQ directly from the FIDO Alliance: https://fidoalliance.org/passkeys/#faq

vbezhenar|2 years ago

> I'd argue within 5-ish years you'll start encountering people who have never used a username + password combo at all.

But can one register apple/google account without password with fresh phone on setup screen? What would happen if that phone would die? Apple often asks for icloud password in various places (which really surprises me, I mean it's Apple app on Apple device which logged in, why ask me about it).

It still looks to me like master password (which is google/icloud password) and other accounts are accessible with this master password. Just less friction: no need to copy random passwords around.

unknown|2 years ago

[deleted]