The adoption of passkeys as an alternative to traditional passwords has seen remarkable growth, with Bitwarden reporting a 550 percent increase in daily passkey creation in December 2024 compared to the previous year. According to PasskeyIndex.io, the number of services supporting passkeys nearly doubled from 58 to 115 throughout 2024, reflecting the growing momentum that began with major platform providers transitioning to passwordless authentication.
While adoption continues to accelerate, implementation challenges remain across major platforms. Microsoft, Apple, and Google maintain different approaches to passkey handling, creating varying user experiences. Microsoft has announced plans to introduce native passkey support in its Authenticator app by 2025, following similar moves by Apple’s iCloud Keychain and Google’s Password Manager.
Passkeys, based on the FIDO2 standard, use asymmetric cryptography to provide enhanced security features compared to traditional passwordless authentication methods. The technology eliminates risks associated with phishing, credential reuse, and shared secrets. Unlike SMS one-time passwords or email magic links, passkeys store private keys securely on the user’s device or in cloud storage, preventing unauthorized access or copying.
“Physical access tokens and biometric interfaces remain crucial for maintaining security standards,” says Mark Dorsi, CISO at Netlify. The statement supports recent FBI and CISA guidance promoting phishing-resistant authentication methods, particularly in response to emerging cyber threats.
Major technology providers have demonstrated commitment to implementing passkey technology. The system stores encrypted credentials on individual devices rather than remote servers, with biometric signatures functioning exclusively on the owner’s device. The architecture prevents unauthorized account access from other devices, leveraging standards like WebAuthn for secure biometric authentication.
“Passkeys do not pose the risks associated with passwords, such as using weak, commonly used, or easily compromised passwords,” says Marcelo Barros, Global Markets Leader at Hacker Rangers. “Cybercriminals constantly develop threats, and passkeys allow organizations to keep up with the latest authentication systems for their networks.”
The implementation of passkeys by major platform providers continues to drive adoption across various services. The technology’s phishing-resistant nature and use of asymmetric cryptography provide enhanced security compared to traditional authentication methods, while maintaining user convenience. The trend matches broader industry efforts to move beyond password-based security, as demonstrated by recent implementations from major financial institutions and technology companies.
Sources: Mobile ID World, Corbado, U.S. Chamber of Commerce, TBS News
Follow Us