Forums
New posts
Articles
Product Reviews
Policies
FAQ
Log in
Register
What's new
Search
Search
Search titles only
By:
New posts
Menu
Log in
Register
Install the app
Install
Forums
Apple Computing Products:
macOS - Apps and Programs
Password Manager Question
JavaScript is disabled. For a better experience, please enable JavaScript in your browser before proceeding.
You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an
alternative browser
.
Reply to thread
Message
<blockquote data-quote="MacInWin" data-source="post: 1929179" data-attributes="member: 396914"><p>I think that the difference is that where you have set up passkeys for a site that requires login, you don't even need to present the login information at all. So, for example, if you go to your bank and it has passkeys set up, as soon as you open the site, you get access to your account. The security is in the pre-negotiated keys and the idea that the biometrics on your iPhone guarantee that you are you. At least that is how I see it. </p><p></p><p>Now, if that is right, a stolen phone passcode becomes easier to use. The thief just has to change your iCloud password, the biometrics (facial recognition) and the phone now becomes a trusted (albeit incorrect) device to open those accounts. So, when I go to passkeys, I plan to strengthen my iPhone passcode to be long and alphanumeric, not just the six numbers it is now. That will be a PITA each time I have to key that passcode in, but it will also be hard to be stolen. The bottom line is that your security has to be at some level, and with passkeys, that is at the access to the iPhone/Mac. But with biometrics, you don't face that stiff security as much as you might need, say, 2FA to work.</p></blockquote><p></p>
[QUOTE="MacInWin, post: 1929179, member: 396914"] I think that the difference is that where you have set up passkeys for a site that requires login, you don't even need to present the login information at all. So, for example, if you go to your bank and it has passkeys set up, as soon as you open the site, you get access to your account. The security is in the pre-negotiated keys and the idea that the biometrics on your iPhone guarantee that you are you. At least that is how I see it. Now, if that is right, a stolen phone passcode becomes easier to use. The thief just has to change your iCloud password, the biometrics (facial recognition) and the phone now becomes a trusted (albeit incorrect) device to open those accounts. So, when I go to passkeys, I plan to strengthen my iPhone passcode to be long and alphanumeric, not just the six numbers it is now. That will be a PITA each time I have to key that passcode in, but it will also be hard to be stolen. The bottom line is that your security has to be at some level, and with passkeys, that is at the access to the iPhone/Mac. But with biometrics, you don't face that stiff security as much as you might need, say, 2FA to work. [/QUOTE]
Verification
Post reply
Forums
Apple Computing Products:
macOS - Apps and Programs
Password Manager Question
Top