52 min
What is a passkey and why should you care? Android Bytes (powered by Esper)
-
- Technology
The FIDO Alliance isn't a fan club for dogs, but a consortium of big tech companies that's trying to make authentication more secure. The Alliance has a lofty goal: To kill the password and replace it with something better. Enter the passkey.
You've probably read a blog post or two about it, but you may be wondering what the fuss is all about. We invited two of the foremost experts on the topic to join us on Android Bytes and explain how passkeys work and why we're better off without passwords.
Christiaan Brand is a Product Manager on Identity and Security at Google and Tim Cappalli is an Identity Standards Architect at Microsoft.
03:09 - What's wrong with passwords?05:17 - How did we get to passkeys?07:47 - How do passkeys reinvent authentication?11:50 - What is the FIDO Alliance? 14:38 - Are passkeys convenient to use?15:47 - What is WebAuthn, CTAP, and FIDO2?18:01 - What is a FIDO credential? What is the meaning of "passkey"?21:57 - At a high level, how do passkeys actually work?24:47 - What makes passkeys more resilient to phishing and data breaches?25:52 - How are passkeys backed up?27:15 - What happens if you forget that you made a passkey for a certain site?28:01 - Can you reuse passkeys?28:51 - Can passkeys be exported or transferred between password managers (passkey managers?)?31:44 - How do you use a passkey stored on your phone to login to a website on your PC (or vice versa)?35:50 - Is there a fallback method to support legacy devices? How long will passwords stick around?40:41 - Can you create a passkey for an existing account?41:28 - What will happen to physical security keys?
Learn more about passkeys at passkeys.dev and developers.google.com/identity/passkeys.
Android Bytes is hosted by Mishaal Rahman, Senior Technical Editor, and David Ruddock, Editor in Chief, of Esper.
Mishaal's TwitterDavid's Twitter
Esper enables next-gen device management for company-owned and managed tablets, kiosks, smart phones, IoT edge devices, and more.
For more about Esper:
Esper BlogMobile Device Management (MDM) GuideAndroid MDM GuideiOS MDM GuideMDM Solutions
Our music is "19" by HOME and is licensed under CC BY 3.0.
The FIDO Alliance isn't a fan club for dogs, but a consortium of big tech companies that's trying to make authentication more secure. The Alliance has a lofty goal: To kill the password and replace it with something better. Enter the passkey.
You've probably read a blog post or two about it, but you may be wondering what the fuss is all about. We invited two of the foremost experts on the topic to join us on Android Bytes and explain how passkeys work and why we're better off without passwords.
Christiaan Brand is a Product Manager on Identity and Security at Google and Tim Cappalli is an Identity Standards Architect at Microsoft.
03:09 - What's wrong with passwords?05:17 - How did we get to passkeys?07:47 - How do passkeys reinvent authentication?11:50 - What is the FIDO Alliance? 14:38 - Are passkeys convenient to use?15:47 - What is WebAuthn, CTAP, and FIDO2?18:01 - What is a FIDO credential? What is the meaning of "passkey"?21:57 - At a high level, how do passkeys actually work?24:47 - What makes passkeys more resilient to phishing and data breaches?25:52 - How are passkeys backed up?27:15 - What happens if you forget that you made a passkey for a certain site?28:01 - Can you reuse passkeys?28:51 - Can passkeys be exported or transferred between password managers (passkey managers?)?31:44 - How do you use a passkey stored on your phone to login to a website on your PC (or vice versa)?35:50 - Is there a fallback method to support legacy devices? How long will passwords stick around?40:41 - Can you create a passkey for an existing account?41:28 - What will happen to physical security keys?
Learn more about passkeys at passkeys.dev and developers.google.com/identity/passkeys.
Android Bytes is hosted by Mishaal Rahman, Senior Technical Editor, and David Ruddock, Editor in Chief, of Esper.
Mishaal's TwitterDavid's Twitter
Esper enables next-gen device management for company-owned and managed tablets, kiosks, smart phones, IoT edge devices, and more.
For more about Esper:
Esper BlogMobile Device Management (MDM) GuideAndroid MDM GuideiOS MDM GuideMDM Solutions
Our music is "19" by HOME and is licensed under CC BY 3.0.
52 min
Top Podcasts In Technology