Starting to look at passkeys and have used the demo at
https://www.passkeys.io/
Haven't committed whole hog to it yet but will transition during 2024.
This is a part of my "abandoning the assholes of the rental software
economy", to whit: agilebits (1Password).
While passkeys don't absolutely replace passwords they do replace the
use of them. Thus, if one loses all of his devices (a house fire, for
example), the ability to log into, eg, Apple, provides for the recovery
of the passkey private/public keys. So - still need to remember ones
AppleID password.
(If that para seems bizarre, do note that passkeys is device oriented
and assumes only the proper owner of the device can open the device
based on biometrics, device specific password or PIN. So if one lost
all of their devices they would be locked out of their accounts - in the
case of Apple (and presumably others), the private/public key pair are
encrypted and saved with your AppleID).
A "cool" thing about it: I set up a passkey for the site above from my
Mac, and the private key was wrapped and securely shared with my other
devices. Thus, just using Face ID on my iPhone I could log in. Yeah,
that Apple Country Club experience. (Not sure how this is implemented
if one is Windows or Google "oriented", but there is surely a similar
mechanism).
Curious to know if others have begun using passkeys and with which sites.
<re-post - 1st try seems to have been lost>
--
“Markets can remain irrational longer than your can remain solvent.”
- John Maynard Keynes.