My recent feature on passkeys attracted significant interest, and a number of the 1,100-plus comments raised questions about how the passkey system actually works and if it can be trusted. In response, I’ve put together this list of frequently asked questions to dispel a few myths and shed some light on what we know—and don’t know—about passkeys. This FAQ will be updated from time to time to answer additional questions of merit, so check back regularly. This author will not be monitoring or responding to comments going forward but can still be contacted through email.
More FIDO in the News
Cyberscoop: It’s time to put multi-factor authentication in the NIST Cyber Framework
In this article in Cyberscoop, Executive Director Brett McDowell explains why multi-factor authentication is a…
The Paypers: You can now meet PSD2 authentication requirements while improving user experience
In this article in The Paypers, FIDO Alliance Executive Director Brett McDowell explains how FIDO…
Harvard Business Review: 8 Ways Governments Can Improve Their Cybersecurity
This article in Harvard Business Review lays out 8 principles that governments around the world…
