Passkeys represent a significant leap forward in digital authentication, offering a passwordless and seamless verification experience. They are built on the Fast Identity Online (FIDO) standard, which provides a more secure and convenient way to access your online accounts. Instead of relying on traditional passwords or SMS codes, passkeys use cryptographic keys stored on your devices, making them resistant to phishing and other common attacks.
This technology is now supported by many major platforms and browsers, allowing users to enjoy faster and more secure logins. Whether you're using a computer, smartphone, or a hardware security key, setting up a passkey can greatly enhance your account security while simplifying the authentication process.
Preparing to Set Up a Passkey
Before you begin, ensure you have a compatible device and browser. This will guarantee a smooth setup process and reliable performance when using passkeys for verification.
You can create a passkey using any of the following devices:
- Computers running Windows 10 or macOS Ventura and later.
- Mobile devices with iOS 16.0.0 or Android 7.0 and above.
- A USB security key that supports the FIDO2 protocol. These physical keys plug into a USB port and provide an extra layer of security, even when used with smartphones via adapters.
Additionally, make sure you are using a browser that supports FIDO standards, such as:
- Chrome version 109 or newer.
- Safari version 16 or newer.
- Edge version 109 or newer.
How to Set Up a Passkey for Your Account
Setting up a passkey is a straightforward process that involves identity verification and key creation. Follow these steps to enable this feature.
Step 1: Complete Identity Verification
The first step is to verify your identity within your account settings. This is a crucial security measure to ensure that only the legitimate account owner can enable a new authentication method.
- Navigate to your account's security center. Look for an option labeled "Security" or "Security Center" in your profile menu.
- Locate the "Passkey" setting and click the button to enable or set it up.
- You will be prompted to verify your identity using an existing method, such as a password or two-factor authentication code. Complete this step to proceed.
Step 2: Create Your Passkey
After successful identity verification, you can choose from several methods to create your passkey.
Method 1: Create a Passkey on This Device
This option allows you to create a passkey directly on the device you are currently using.
- Click the option to continue.
- Your device will prompt you to complete a biometric authentication (like a fingerprint or facial scan) or enter your device password to generate the key.
Method 2: Use a Separate Mobile Device
Note: Your mobile device must be updated to at least iOS 16.0.0 or Android 7.0.
- Select the option to use a "Phone or Tablet."
- Use your mobile device's built-in camera to scan the QR code displayed on your computer screen.
- Follow the verification prompts on your mobile device to complete the setup.
Method 3: Use a Physical USB Security Key
For the highest level of security, you can use a dedicated hardware key.
- Select the "USB Security Key" option.
- Insert your FIDO2-compliant USB key into your computer's port.
- Follow the browser's instructions to register the key as your passkey.
Step 3: Manage and Use Your Passkey
Once created, you can view and manage your passkeys from your security settings. It's good practice to give each key a descriptive name, especially if you plan to use multiple keys for different devices.
When logging in or confirming a sensitive action, simply select the passkey option for a fast and secure verification experience without entering passwords or waiting for codes.
Frequently Asked Questions
What is a passkey and how is it different from a password?
A passkey is a cryptographic credential that replaces traditional passwords. It consists of a pair of keys: a public key stored by the service you use and a private key stored securely on your device. Unlike passwords, passkeys are immune to phishing and data breaches because they never leave your device and cannot be reused across sites.
How many passkeys can I link to a single account?
You can typically register multiple passkeys for a single account, often up to 10. This allows you to create keys for each of your devices, such as your laptop, phone, and a backup hardware key. Each device can only be registered once, but you can name them for easy identification.
Are there any restrictions after setting up a passkey?
For security reasons, there may be a brief holding period after changing your authentication method. During this time, certain high-risk activities like withdrawing funds may be temporarily disabled. Furthermore, if your account is under review, you will be unable to create, reset, or delete passkeys until the process is complete.
What should I do if my device fails facial recognition during setup?
Ensure you are in an environment with adequate, but not excessive, lighting. If the failure persists, you may have exceeded the allowable number of attempts. For further assistance, it is best to contact customer support directly. 👉 Explore more security strategies
Can I use passkeys on multiple browsers?
Yes, passkeys are a web standard and are not tied to a single browser. However, their management might differ. For instance, a passkey created in Chrome might be stored in Google Password Manager, while one created in Safari is stored in iCloud Keychain. You can use them across browsers as long as the site supports the FIDO standard.
What happens if I lose my device with my passkey?
Since passkeys are synced across your devices in many modern ecosystems (using secure, end-to-end encrypted clouds), you can often recover access by signing in on another trusted device. If you used a hardware key, you can use your backup key to regain access. It is crucial to have a backup method configured.