FIDO Member Webinar: Device-bound or Synced? Security Trade-offs in Passkeys

Hosted by Secfense

Not all passkeys are created equal.

While passkeys are widely promoted as phishing-resistant by design, their security properties depend heavily on how they are implemented and stored. The choice between device-bound and synced passkeys has direct implications for account takeover resistance, recovery models, ecosystem dependency, and regulatory alignment.

In this session, we take a deep technical look at the different passkey models used in enterprise environments and analyze their real-world security trade-offs.

What this webinar covers:

• The architectural differences between device-bound and synced passkeys
• How each model impacts phishing resistance, account recovery, and device loss scenarios
• Ecosystem risks and platform dependencies (cloud synchronization vs hardware-bound credentials)
• Attack scenarios and practical threat considerations
• Operational challenges in regulated and high-assurance environments
• The hybrid approach: mobile-bound passkeys as a practical balance between security and usability

Rather than treating passkeys as a single concept, this session breaks down the security assumptions behind each model and explains where those assumptions hold — and where they don’t.

This is a technical discussion focused on architecture, risk modeling, and informed decision-making — not a product demonstration.

Who should attend:

• IAM and security architects
• Enterprise identity engineers
• CISOs evaluating authentication strategy
• Risk and compliance leaders in regulated sectors
• Teams designing high-assurance passwordless deployments