It’s time to ditch passwords for passkeys

People in the UK have been urged to start ditching passwords in favour of passkeys, where available, as a way to secure their accounts online.

Passwords have long been the default way many people set up and log in to accounts for digital services.

However, the National Cyber Security Centre (NCSC) said on Thursday it was “overhauling decades of security practice” to instead recommend passkeys as the most secure option.

Platforms including Apple, Google and X already let people use them instead of passwords, but what are passkeys, and how do they work?

The advice comes after years of warning people against using simple codes which can easily be guessed, like “123456”, as well as pet names, as passwords.

Against a backdrop of rising data breaches, the NCSC has also repeated warnings against reusing the same password for different sites.

Password managers and multi-factor authentication (MFA) methods have grown in usage as a way to help strengthen and save log-in credentials.

The NCSC believes passkeys may be less vulnerable to hacks and human error, but some experts say they are still “not a silver bullet”.


More

Carrier Management: Major Gap Between Identity Security Confidence and Reality: Study

A new report uncovered a significant disconnect between enterprise confidence in identity security and operational…

Read More →

Crypto News: xMoney revolutionizes digital payments: first in the world to launch Mastercard Payment Passkey via app

xMoney marks a key milestone in the evolution of digital payments, becoming the world’s first Mastercard…

Read More →

ID Tech: FIDO Opens June Interoperability Testing Window for Certification Candidates

The FIDO Alliance has opened its June interoperability testing event, giving FIDO2 and FIDO UAF…

Read More →


Subscribe to the FIDO newsletter

Stay Connected, Stay Engaged

Receive the latest news, events, research and implementation guidance from the FIDO Alliance. Learn about digital identity and fast, phishing-resistant authentication with passkeys.