What you need to know
- Google is implementing an update for passkeys that allows users to save and synchronize their crucial credentials across multiple devices.
- This update eliminates the need to scan a QR code when trying to sign in from devices other than Android. However, a new PIN has been introduced to enhance end-to-end encryption (E2EE) protection.
- Users can now save and sync their passkeys on Android, Windows, macOS, and Linux platforms. Support for ChromeOS is currently in beta testing phase.
Google’s latest passkeys update introduces much-needed convenience to an essential security feature.
As per a post on Keyword, users can now save passkeys in Google’s Password Manager across Windows, MacOS, and Linux devices using the Chrome browser. The feature is also on its way to Chromebooks, with the functionality currently in beta for ChromeOS.
Saving passkeys brings added convenience. To sign in, users now only need to provide their “Touch ID” (fingerprint) for access. Previously, users couldn’t save passkeys on devices other than Android, necessitating QR code scanning using their smartphones.
This update aims to streamline the process and enhance security, as outlined in another update by Google.
With this update, Google is introducing a new security measure called “Password Manager PIN.” Before accessing their passkeys on new devices, users will now have to use this PIN to verify their identity. The PIN is encrypted end-to-end, ensuring that only the user can access it.
Image 1 of 2
Devices that users have signed in to will now prompt for this new PIN whenever they try to access their saved passkeys or create new ones. Furthermore, Google mentions that users can select the “PIN options” menu while setting up a PIN to create a longer “alpha-numeric” code.
Alternatively, users can use the screen lock credentials of their Android device as an option.
The ability to synchronize passkeys across devices is being rolled out today (Sept 19), with iOS support on the way and ChromeOS still in beta.
Passkeys have piqued the interest of users seeking to safeguard their digital assets. Google has been proactive in this regard, having previously issued an update for “high-risk” users back in July. This update is a result of Google’s collaboration with Internews and is available through its Advanced Protection Program (APP).
“High-risk” users, such as journalists and human rights activists, stand to benefit from this initiative. Their sensitive information is a key focus for Google within the APP, where users can opt for a digital passkey or a physical security key. Google advises those enrolling in the program to add an alternative recovery method in case of emergencies.
This article was first published at Source link . You can check them out for other stuffs