Passkeys - The END of Passwords
Рет қаралды 131,715
Күн бұрын🔥 Go to bit.ly/37su9oh and use code reneritchie to get a free 100 pack of blades when you purchase your Henson Razor - Make sure you add both the 100 blade pack and the razor for the discount to apply!
Apple announced their passkey implementation at WWDC 2022 - iOS 16, iPadOS 16, macOS Ventura and iCloud Keychain. And... you know that feature that automatically fills in text message tokens for you, the one that everyone on Twitter says should get the team that made it a raise. It’s basically a meme. Yeah, passkey’s is being driven by that exact same team, with every bit as much thoughtfulness and delight. And as part of the same, familiar, auto-fill interface and experience all of us have been enjoying for a good long while already. Here's how it works!
* Google, Microsoft, and many others are also part of the FIDO Alliance and will be implementing passkeys pretty much everywhere... eventually!
🔔 SUBSCRIBE kzfaq.info?s...
🍪 Latest Apple Silicon: • Apple Silicon Deep Div...
🙏 PATREON THANK YOU!
Get access to exclusive Discord, previews, even your name in this description or credits! / reneritchie
Kyle Giglio, Sven Jasper, Aziz Rahman, Josef, Dude, Christopher Wiggins, Martin Perry, Mark Lussier, Daniel Pasco, Rod Gray, Richard Urbano, Shashank, Chad Potts, Paco Arango, Ryan Parman, John Malkin, Rick Vink, James Hillhouse, Brian Jones, ChzhdTech
🔗 LINKS
🗂 CHAPTERS
0:00 - Passkey Announcements
0:18 - Curren Password Problems
1:20 - Passkey's Promise
1:31 - Password Exploits
1:50 - Apple's Passkey Announcement
1:58 - Google's Passkey Announcement
2:11 - How Passkey Integrates with Auto-Fill
2:40 - How to Create a Passkey
3:23 - How Passkeys are Secured
5:39 - How Passkeys Sync
5:52 - How to Share a Passkey
6:04 - How Passkey Handles Multiple Accounts
6:30 - How Passkey Handles Multiple Platforms
6:44 - How Passkeys Work with Password Managers
7:17 - Passkeys and High-Level Targets
7:39 - How Passkeys Work with a Device You Don't Own
8:14 - What if You Lose Your Passkeys?
9:19 - The Future of Passkey
🚨 ETHICS & DISCLAIMER
This channel does not produce sponsored or paid reviews. Companies occasionally loan sample products to facilitate reviews but provide no payment and get no editorial input, content approval, or advanced previews. They see them for the first time when you do.
Links may contain referrals for affiliate programs that provide this channel with a tiny commission should you make a purchase. They likewise receive zero editorial input or consideration.
🍎 Some video and images courtesy of Apple Inc.
📷 Some video and imagery supplied by Getty Images and/or AP Archives
🎸 Some music supplied by Epidemic
MORE
⭐️ Nebula: nebula.app/reneritchie
🐦 Twitter: / reneritchie
📸 Instagram: / reneritchie
🌎 Web: www.reneritchie.net
🍎 Podcasts: apple.co/reneritchie
🌥 Overcast: overcast.fm/p1644160-NUVafv
👖 Pocket Cast: pca.st/reneritchie
Thanks for watching, see you next video!
@NoBody-ks3co 2 жыл бұрын
I secure myself by having a low credit score and being completely irrelevant and I have never once had an issue with stolen passwords.
@mbizozo6271 2 жыл бұрын
Same
@captain_crunk 2 жыл бұрын
I take the added step of ensuring my bank account is empty.
@mushroomtits8387 2 жыл бұрын
CapitalOne credit limit is $350 and I have the number I call 4 chargeback on speed-dial...Good LUCK HACKERS!!!
@lang6626 2 жыл бұрын
Wow people are smart here
@adamtajhassam9188 2 жыл бұрын
low credit score doesnt really help anyone . Just a sorry excuse to be dumb. or look smart .
@kevinlovestech 2 жыл бұрын
An incredibly well done and explained video! This really helps people understand why this matters so much! Definitely sharing this far and wide! Thank you Rene!
@ReneRitchie 2 жыл бұрын
Thanks so much for watching!
@CrushedAsian255 Жыл бұрын
What’s the heart in the top of the comment?
@tdrg_ Жыл бұрын
@@CrushedAsian255 super thanks
@Anotherpodcast 2 жыл бұрын
Beautifully explained, Rene. I learned the basics of public-key encryption (private key, public key, encrypt/decrypt, sign) back when PGP popped up on the general geek radar - I owe that to Wired magazine - and that understanding plugged straight into this.
@marsgizmo 2 жыл бұрын
Yes! Passkeys will be very helpful! Will probably take a bit, but can't wait to get rid of all my passwords!
@Kevdog1920 2 жыл бұрын
Same
@adp98761 2 жыл бұрын
I've been waiting for the day that passwords became a thing of the past. Public/private keys are a great solution. Being a Microsoft cloud architect, I've been using Microsoft Authenticator and Phone Sign In over FIDO2 for a couple of years now. It's so much smoother than entering passwords. Passkeys are going to take it up a notch...
@conradofmc_ny6706 Жыл бұрын
What about if I lose or break my phone? Or computer?
@adp98761 Жыл бұрын
@@conradofmc_ny6706 you can set up a Yubi Key as a backup.
@elvisluvaton5078 2 жыл бұрын
This is so welcome change. Need to rely on password managers and creating site specific passwords, when requirements differ a lot, is huge pain in the backside. Great change and good introduction. Thanks!
@rebeccameek873 2 жыл бұрын
Great explanation of the future of security of devices, and websites etc 👍🏼
@CyberMedics Жыл бұрын
Laid out extremely well. Please continue to emphasize what happens when you lose the device that has the passkey. With no backup recovery the account is lost. Subbed and liked....super content thank you.
@fuori_piste 2 жыл бұрын
Great video! As I had questions, you simply answered them all. Talent
@aaron1932 2 жыл бұрын
Thanks for this video. It's like it was made just for me since it answered so many questions I had about this. Can't wait for it.
@danno5645 2 жыл бұрын
What about someone logging into your iCloud account and gaining access to all of your pass keys? Will iCloud be protected in a different way than with a password with the system? Or will iCloud use a pass key? How would that work? I’m imagining someone phishing the iCloud account or something like that and then getting access to all of your sensitive login information.
@michaelwood3205 2 жыл бұрын
Very well explained. Kudos.
@GersonHM4 Жыл бұрын
Thank you so much for explaining, yeah I was a bit reluctant at first, it seemed kinda an unsafe way to sign in cuz it sounds too simple, but now It sounds like a big improvement, thanks again for taking the time to explain to us, to regular people. I can't believe it, usually security and productivity dont go on hand, but now the future of digital security looks brighter
@jonmarc876 2 жыл бұрын
I love this new step forward to eliminate passwords. My biggest concern is the last question you answered. They’re lots of situations where I might need to sign into an account when I don’t have my phone on me. I’m curious to see how that will be addressed in future.
@philamavikane9423 2 жыл бұрын
In the future you’d die immediately if you don’t have any passkey on you💁🏽♂️
@baris5404 2 жыл бұрын
with backup keys, hint: they look like one time use passwords
@goodtoshi 2 жыл бұрын
Most likely a recovery passphrase will be the answer
@DBE008 2 жыл бұрын
Probably iWatch will have that option and many people wear watches nearly all time to many many place’s.
@ScrapyHD 2 жыл бұрын
The second apple announced this I was wondering if it needed to be supported by each website, hopefully the FIDO alliance creates something that's plug and play so this can be adopted quickly. I've had enough scares of forgetting my 2 factor app password. Thanks rene!
@Nur__ 2 жыл бұрын
that's going to be key. If it's plug and play I see no reason why everyone shouldn't be using it. Fingers crossed tho!
@ChristopherTurner 2 жыл бұрын
Yes and no. So the Fido Alliance has implementation documentation(which isn’t that great), so it’s up to each application to implement it in a way that’s fits with their current IAM architecture.
@laikmoshwa1028 2 жыл бұрын
this means having you phone and 6 digit code stolen, will allow full access to all your online accounts, at least with the current system if that happens I can rush to change my passwords while the attacker is trying to use the ones stored in keychain, this way I have no way to login while my phone is stolen, and can't prevent the attacker from accessing anything
@dansanger5340 2 жыл бұрын
When did Apple say there would be no lock-in? It would really suck if I created an account (or many accounts) on my Mac and then could never log in on my Android phone or Windows PC because Apple doesn't allow the passkey to be exported. And, if they do allow the passkey to be exported, that weakens the security advantage of passkeys, because it could become vulnerable to attack. Does the FIDO2 standard define a way to securely move passkeys between devices and ecosystems?
@rplaughl Жыл бұрын
This was really helpful, thank you for making this video!
@adaminjp Жыл бұрын
I would prefer an offline keychain vs using iCloud Keychain.
@aabderrahmane 7 ай бұрын
literally why
@DonaldPerreault 2 жыл бұрын
Nice shirt Rene 👍🏼 Great video as well!
@molillaney7286 2 жыл бұрын
This is all great but how do you use your accounts across platforms.
@RozemVlog Жыл бұрын
What if your iCloud account is compromised well the person managed to sign in to google account?
@Nooumy 2 жыл бұрын
So excited for this future i got hacked once forget my accounts so many times couldn’t even think how many thanks for this awesome vid
@jc_alpha 2 жыл бұрын
Such an excellent explanation, thank you!
@TheRealJocoCourter 2 жыл бұрын
I’ve tried to watch your video several times today and it won’t load :(
@Nikos10 Жыл бұрын
Does passkey work with iOS 16?
Жыл бұрын
How will the android/google passkey manager know what is the private key stored in my iCloud keychain?
@LeleSocho 2 жыл бұрын
The "what if one just emails the qrcode?" question was the last doubt i had about passkeys, now that my doubts are gone i can't wait for them to be adopted
@phonepup06 2 жыл бұрын
The “oh thankfully tech support called at just the right time, and I know they have the right details since I gave them my password” and the “thankfully I clicked that link that wasn’t spelled all the way correct” had me dying 😂😂😂 I cannot wait for passkeys; so,etching I don’t see a lot of people talking about is that apple actually had some information on this last year (not in the main keynote I don’t believe). I’m sure this’ll alls he’ll increase the speed of logging in
@Tech-geeky Жыл бұрын
and if PassKey gets hacked.? oh sorry, we only believe info that's we know about in public. we should look at what can be possible, not just what we know about in the public space...
@terranceblount5959 2 жыл бұрын
Great work as always, Rene! Was curious on this topic and now RR has spoken! 👏🏽 🙏🏽
@caje25 2 жыл бұрын
So in the use case that a server is compromised and the public keys are stolen, could a malicious website present the same login challenge, and the user would not know they’re logging in to a malicious website? How does the device ensure that it’s logging in to the correct site, even if they have the associated public key? Presumably the private key is somehow tied to the relevant site’s domain, so it can’t inadvertently be used on the wrong site?
@andyH_England 2 жыл бұрын
If you have already authorized on the correct website then the AI will not allow Passkey on a fake website, but of course if you setup Passkey on a fake site then that would be an issue. I assume there are notifications showing on your iPhone if you have just used Passkey and other security.
@alexbishop5870 Жыл бұрын
…So three months after you made this great video - my brand new IPhone 14 pro max has exactly one passkey - Yahoo (apple, google and amazon are not offering this yet - any idea when they will? I’ve spent the last hour looking through my Apple ID, google accounts and amazon apps looking for the passkey options. Last night Yahoo offered me this option and it was soooo easy!
@colinreece3452 Жыл бұрын
So if I use someone elses PC and authocate my passkey to use it can I see their details, for eaxample loog in to their bank account?
@BreakTime10101 2 жыл бұрын
The video is not working for me.
@katbryce 2 жыл бұрын
Will it be possible to sync passkeys between Apple and Google? I have my passwords saved on Apple keychain, and on the Google equivalent, because I use both in my daily workflow.
@ReneRitchie 2 жыл бұрын
Yes, that's in the video! Apple, Google, Microsoft and others have committed to making their implementations cross-platform or migratable
@SamarSunkaria 2 жыл бұрын
-AFAIK, no.- Not currently, but we may see that in the future. For now, you will need to create a new passkey for each platform. The website/service you are using should provide support for associating multiple passkeys to a single account. However, you can still perform the authentication over bluetooth using the QR code if you only have your passkeys on a single device.
@ArthArmani 2 жыл бұрын
Passkeys is probably the best update that comes out on the new macOS, can't wait till all websites adopt this.
@mokiloke Жыл бұрын
What if someone grabs your phone while you are on it (like all the time), and runs off. Big score? Access to everything?
@michaellatta 2 жыл бұрын
As pointed out by one KZfaqr, I hope passkeys can be secured by more than biometrics. Ideally things like bank passkeys or such will allow a password to be required in addition to biometrics. In particular since law enforcement in the us and border patrol can compel you to unlock a phone with biometrics, but not compel a password without due process. If only biometrics it would give full access to all your apps/sites.
@ReneRitchie 2 жыл бұрын
I cover this in the video! It can be device/system passcode or password
@jbscpa 2 жыл бұрын
Remember reliance on something that cannot be changed, like biometrics, is a mistake.
@tuams 2 жыл бұрын
I'm kind of wondering if passkeys create some sort of an unique identifier that can be tracked? If Apple implements it, will it allow to create several passkeys for several uses? Like creating a work passkey and a home one? Also if this would affect the data harvesting and increase privacy in closed echo systems?
@redsoxers 2 жыл бұрын
This has nothing to do with or connection to tracking.
@underconfident_asmr 2 жыл бұрын
So....what happens with certain sites/accounts that require it's users to change their password every so often? Does the device present an option for the system to reissue/change that public key for this situation to work out?
@redsoxers 2 жыл бұрын
There’s no point to requiring a reissue/change of a public key.
@Nur__ 2 жыл бұрын
@@redsoxers Xactly
@andyH_England 2 жыл бұрын
It is a Passkey not password so this avoids the pain of changing your password every so often.
@adp98761 2 жыл бұрын
Also, password changes are inherently an insecure method of protecting identities. People are lazy, meaning that new passwords are generally weak and often follow patterns. A better method is not changing your password, and instead using a token to prove your identity. Something you know + something you have can protect you better than just coming up with a new password every 90 days.
@BreakTime10101 2 жыл бұрын
Video is working now. Rene, what happened to your podcast Apple Talk with Georgia Dow?
@WineWorldTV 2 жыл бұрын
Seems similar to Steve Gibson's SQRL. Though I haven't kept up with it in a couple years so I don't know if both are on par with each other. Looking forward to a passwordless future though.
@eastmanwebb5477 2 жыл бұрын
The main difference is SQRL only requires the user to maintain one private key that is used to generate unique private keys for each site in the background, while the FIDO system requires a different random private key for each website that needs to be managed separately. The SQRL solution is better in this regard. Steve Gibson discussed the differences in detail in his podcast Security Now, episode 874.
@Hermiel 2 жыл бұрын
@@eastmanwebb5477 Another major difference is that SQRL places the locus of control and hence ultimate responsibility in the hands of the user by way of a master reset key. There's nobody to go crying to if that goes missing. I like this arrangement.
@jmp622 2 жыл бұрын
Video Won’t load from KZfaq. Others vids do
@trumanhw Жыл бұрын
*How can a SERVER verify: Public + Private = (in)valid w/o having PW from which VALIDATE the RESULT!?*
@ethanmenzel 2 жыл бұрын
Will ios 16 allow you to use their authenticator for all apps? I constantly make sure I’m as secure as possible with my passwords but I hate having to download Microsoft authenticator or other authenticators to go passwordless. I hope Apple makes it, so you do not need multiple authenticators to go passwordless.
@simpleffective186 Жыл бұрын
But i am sending a signature/solution to the server so can't *that* be intercepted by the hacker?
@albertreed966 2 жыл бұрын
I like your shirt! I am notorious for not remembering My passwords and it sounds as if I am about to be saved with passkey....I sure hope so because there are multitudes of web sites that I would love to explore but don't because of passwords requirements. Even if I store passwords on another password storage site, I have to remember a password to get into that site so, I'm back to square one. I don't use my devices to do business. I mainly have a curious mind and I might think of something that I want to learn about or learn to do and, don't because I have to remember a password, it's that simple. Keep up with your good work and keeping us in the know about what we might get to know!
@MarbsMusic 2 жыл бұрын
Some of us Network and Unix admins have been enjoying SSH keys for many many years... can't wait to see similar technology replace passwords. For most people they grossly insecure...
@MOE7CO Жыл бұрын
How to use the passkeys?
@LeonardoDeVinci1452 2 жыл бұрын
My problem is requiring passwords for things that don't need them. like downloading free software or accessing certain websites even testing programs that don't need credit cards. These are just another way of keeping track of you for marketing purposes.
@megajonson9075 2 жыл бұрын
Is the passkey as safe as a physical security key if you also have it stored in your iCloud keychain? I understand it would be as safe if the private key is only generated and stored in the secure enclave of your phone or computer (given that you trust that equally to a physical key), but I assume it would have to be a backup stored in the iCloud keychain if you want the portability and recoverability benefits compared to the physical security key. That seem to make the physical security key still an alternative if you believe the iCloud keychain can be attacked. Still a huge leap forward for most of us, but still less (to what degree?) secure than a physical key.
@ciprianadrian2123 Жыл бұрын
I'm on Google Advance security program . I much rather change a 30 $ secure key than a whole expensive device
@chriscoop 2 жыл бұрын
What if I create an account from my iPhone but then want to login on my Mac using Chrome or Brave? Does Apple share the passkey with those apps?
@ReneRitchie 2 жыл бұрын
That's in the video! Passkeys sync over iCloud Keychain to all your logged-in devices
@chriscoop 2 жыл бұрын
@@ReneRitchie OK thanks! I didn’t know if it only sync’d with Safari.
@magicmanchloe 2 жыл бұрын
What I want to know is how passkey resets will work when people inevitably lock themselves out of there iCloud Keychain. In the past you could still get access to the account via remembering the password or resetting it via email or other authorization. How does that work if the passkey is tied to your keychain. Is giving access to friends or family access the only option?
@stephenfoster2532 2 жыл бұрын
You wont forget because your password is your face or fingerprint. No more sharing passwords with family, the website will know that its you for sure.
@magicmanchloe 2 жыл бұрын
@@stephenfoster2532 bro, this is keychain we are talking about. Yes you can use biometrics on the phone to Authenticate but if the phone is lost or you forgot your iCloud password and get locked out what are you supposed to do. At the end of the day biometrics are just a secondary form of authentication. When your phone reboots it still requires your password. And when you set up a iCloud account your new device you still need to know your information. The amount of times people came into the Apple store bc they got locked out of their phones and or locked out if there iCloud account is ridiculous. I used to see at least three a day just during my shift at one Apple store.
@andyH_England 2 жыл бұрын
There will of course be recovery options that allow you to restore. Passkey is the future as it eliminates hackers to a major extent and it is clearly something we should all move to ASAP.
@magicmanchloe 2 жыл бұрын
@@andyH_England Never said it was a bad thing WebAuthn is great. But I have yet to hear someone explain how recovery works on this. It solves 90 problems with passwords and other authentication methods but The issue account recovery is still not well solved for.
@ScotowVideos 2 жыл бұрын
What's the difference between Passkey and WebAuth (integrated in iOS 15)?
@ReneRitchie 2 жыл бұрын
Passkey uses WebAuthn on the server/app side, right?
@SamarSunkaria 2 жыл бұрын
WebAuthn on iOS 15 introduced system-wide support for security keys (like YubiKeys). They also previewed passkeys (on device public/private key authentication) that synced over iCloud, but didn't have the rest of the functionality to allow it to work across platforms. iOS 16 actually introduces passkeys; which crucially have support for authentication across platforms over bluetooth. If you are interested in the details, you can learn more by watching the "Meet passkeys" session from WWDC22. P.S. "passkey" is a common noun, so no need to capitalize it.
@firdaushbhadha2597 2 жыл бұрын
@@SamarSunkaria thank you 🙏
@-zerocool- Жыл бұрын
Still dont get it, how does the device know who i am without first logging into it with username and password? This sounds more like web3
@pacomacman 2 жыл бұрын
All well and good if you are only using iOS and never need to login on Windows right?
@redsoxers 2 жыл бұрын
Wrong. It’s a standard, not an Apple proprietary implementation
@stratvar Жыл бұрын
Are passkeys susceptible to session hacking/session highjack though?
@David-G 2 жыл бұрын
Great video, I’ve been watching you for years love you Work when do you expect us to come into play?
@eliotcole 2 жыл бұрын
I don't have a phone. I don't want my security kept in the cloud ... what if I lose my private key?
@Zanderthelab 2 жыл бұрын
Will I be logging in via Face ID or Touch ID? Or am I typing in a pass key? It sounds like what we already have. And I like making my own password. Not having my phone make a random and safer password…
@redsoxers 2 жыл бұрын
You use Face ID, Touch ID or the pin code to your phone. They’re three different ways of doing the same thing.
@SigururArniSvanbergsson 9 ай бұрын
Will this also work if I try to login to my father's brother's nephew's former roommate's computer?
@hughlynas6219 9 ай бұрын
What about different operating systems, web browsers? Do I need a different passkey for each operating system to open a website? You touched on Windows but you were mainly talking about Apple products - I work with Windows 10 and 11 on different devices and I have an iphone - now we are talking about Edge, Chrome, Firefox, Opera, Apple browser. The private passkey is stored where? icloud? Dashlane? or? How do I direct where it is stored? If it is Dashlane does that mean as long I have Dashlane on all my devices only one passkey across all devices for each website will be necessary? Same with icloud? If I don't have either where is it stored? a different passkey for each device for a single website? These questions not addressed here, or anywhere else that I can find - all the articles on the subject of passkeys are vague on these critical issues.
@nickfarrell429 Жыл бұрын
So does this mean I have to lock my iPhone? Never have never really wanted to. But if someone steals my phone can they access all my accounts?
@jeffhale1189 2 жыл бұрын
Thanks…very helpful explanations. I look forward to this feature. Blessings on your day.
@ReneRitchie 2 жыл бұрын
Thanks so much Jeff!
@carlaxelpetersson6734 2 жыл бұрын
Why is this video dead?
@kkmnstr 2 жыл бұрын
Will passkeys work on my Apple Watch?
@johnsmith9720 2 жыл бұрын
Good explanation
@haroldbridges515 2 жыл бұрын
With 1password I can share certain logins with family members. Will that be possible with the passkey system? I know the standard advice is never to share passwords, but the people who give that advice do not have a 100 year old family member.
@michaelplaczek9385 Жыл бұрын
Very informative!
@krakatoasundra 2 жыл бұрын
since this private ley can be shared to loved one or stored by a third party, it seems like there’s a chance these privacy keys may be stolen.
@matthewoyan 2 жыл бұрын
Yeah, I think there's still a pathway for social engineering for passkeys that way, but I think it's still better than the username/password system we have right now
@Nur__ 2 жыл бұрын
maybe they can create another temporary key you can share, I'm not sure how it might work but it might be a solution so your private keys always stay you know PRIVATE.
@VMYeahVN 2 жыл бұрын
Yeah nothing is 100% foolproof, but this is like only one or two ways to infiltrate compared to all our current solutions having like 20 ways each to break in. So even though this isn't iron clad, it's still miles ahead of what we currently have.
@ericnicholls3955 Жыл бұрын
I can already hear a guy from Mumbai asking me over the phone to send my private key to him.
@wsson7177 2 жыл бұрын
So what if you forgot your Apple ID password and are not able to recover it?! Of course you can set up so a Family member or friend can help you get access to your Apple ID again. BUT the that will not Give you access to your keychain.
@151balance 2 жыл бұрын
“like an animal” I love it 😆
@tuckerjeffrey 2 жыл бұрын
Thanks so much for the video. I hope Apple gets this Passkey to work easily and correctly. I’m sick of Passwords and hopefully this will be the death of them. Thanks Rene..
@ReneRitchie 2 жыл бұрын
Same, same!
@BigMoney23223 Жыл бұрын
My brain hurt for all the inside jokes at the start of the video
@shadow.banned 2 жыл бұрын
Get it done.
@michaelraiwet 2 жыл бұрын
Rene, what’s the difference from Sign In with Apple?
@SamarSunkaria 2 жыл бұрын
OAuth (like Sign In with Apple) hands over the user authentication to a third party like Apple, Google or Facebook. Passkeys do not require a third party service in the loop.
@michaelraiwet 2 жыл бұрын
@@SamarSunkaria thanks for the clarification
@Spartan2x 2 жыл бұрын
That sounds just like a authenticator app. What if I want to sign into something from friends computer but I don't have my phone?
@ReneRitchie 2 жыл бұрын
Like I said in the video, it'd be the same as trying to sign in without your 2 factor authentication device
@CasualViewer-t4f 2 жыл бұрын
This was a great Rene.
@olioli6165 2 жыл бұрын
@Rene Thanks for the link for the link, really appreciate.. but we will still be in the mess with the devices passwords and sim cards, for us who wtill young with grey hairs our brain still can remember our devise password when they ask for after an update or an other mess with touch ID or Face ID but older people like my mom is starting to be the hell. Per device is at lest 2 passwords, a new user using a Mac with iCloud is at least 2 passwords to remember, same for an iPhone. But as you said passkey will be now cross platform do you know if that will work for the Notes who was made on a Mac and then open on an iPhone? Spent 5 min to rewrite my mom password on her iPhone and noting was working until that bing me that i made this note on her Mac and use this password to open the note and it's was working! Continue your work you are Amazing!
@SimonHodgkiss 2 жыл бұрын
How are PassKeys going to work if your Mac is not supporting the new version of Mac OS will I get the QR Code I can scan with my iPhone?
@redsoxers 2 жыл бұрын
The operating system has to support PassKeys.
@SimonHodgkiss 2 жыл бұрын
@@redsoxers from my understanding it didn’t seem that was the case. How do you login if your OS doesn’t support PassKeys? Are you not able to move to using them in the first place then?
@redsoxers 2 жыл бұрын
@@SimonHodgkiss Because you have to have some operating system component to make and manage the keys.
@SimonHodgkiss 2 жыл бұрын
@@redsoxers yeah I could use my iPhone / iPad to manage them and the hopefully be offered up the QR Code sign in function on older Mac maybe right?
@redsoxers 2 жыл бұрын
@@SimonHodgkiss Yeah, that would work fine.
@Fatchoi27 2 жыл бұрын
I Have Already Done it on iOS 15.6 Beta.
@slothgirl2022 2 жыл бұрын
I use Yubikeys and FIDO Yubikeys for as much as I can. Even my macOS login is protected with a yubikey.
@ReneRitchie 2 жыл бұрын
Would you want to give them up for passkey?
@slothgirl2022 2 жыл бұрын
@@ReneRitchie Well, my FIDO Yubikeys are functionally identical as Passkeys. The nice thing is Passkeys require no extra hardware such as one of these keys. The iffy thing for me is it requires a lot of faith in Apple to keep the private keys secure as they are out of the users' hands. I'm sure I'll use Passkeys wherever possible as time goes on.
@jonpcostello 2 жыл бұрын
Can you export passkeys out to leave the apple ecosystem?
@ryanbotha7256 2 жыл бұрын
It’s 7 hrs after you’ve posted and none of my devices want to play this video. Not on wifi nor on mobile data. Other videos play, though? Tf?
@augustsebastianaldo 2 жыл бұрын
I have the same problem
@BreakTime10101 2 жыл бұрын
Maybe it got taken down?
@gerardofaustin8156 2 жыл бұрын
I LOVE YOU PASSKEYS !!!
@grahamevans8567 2 жыл бұрын
This is so cool!
@allanwilmath8226 Жыл бұрын
The obvious problem with this setup is icloud keychain, or more specifically storing the private keys in the same device you are using. It's impossible to store something truly securely on a computer that the user has access to. Really need to be supporting hardware like Yubikey. This problem has been around for decades, this solution has been for 15 years. Take your time guys! Maybe working on this would have been more constructive than me-mojis?
@thegreatbeluga8224 2 жыл бұрын
So if passkey is stored on iCloud, do we still need a password to access iCloud? can't they just try to hack my iCloud password?
@redsoxers 2 жыл бұрын
The keys would be useless because there would be no way to authenticate their use
@bewhee 2 жыл бұрын
iCloud login has 2FA by default. If you have at least 1 device logged in to your iCloud account, a scondary login from a new device will require a confirmation on the other device.
@8ghaly Жыл бұрын
What if my phone got destroyed and i wanted to login in to my account
@yeeisme 2 жыл бұрын
What was it again? "I tried to update all my passwords to Chuck Norris but every website told me that it was too strong!"
@whogotpwned Жыл бұрын
Thank you very much. There are a lot of explanations on YT which tell you "You just need FaceID / PIN (whatever) and there is no need for passwords at all. Rest is magic". Thanks for explaining it from a more technical perspective.
@scott1414 Жыл бұрын
Man! I can’t believe that I just bought the titanium razor from Henson Shaving that Rene talked about in this video! I’ve struggled with shaving my whole life. Heavy beard. This may be what I’m looking for!
@Bigcoaching4u 2 жыл бұрын
So the phone hand set is going to be if it’s not already the most important thing you own and this is just the beginning
@JamesEzell 2 жыл бұрын
Can’t wait
@ajohnwiersema Жыл бұрын
Love my Henson Razor! (And apple keychain)
@winninglifeyo 2 жыл бұрын
Working in cybersecurity passwords are the bane of my existence. Sure I do pen tests & ethical hacks. I spend so much time securing shit that ppl screw up bc they got phished or some shit. There is just a certain demographic (I won’t say which) that can’t learn good online security hygiene
@maikaimakena9424 2 жыл бұрын
The King 👑 of KZfaq ⚡️🤙👊
@BreakTime10101 2 жыл бұрын
Rene, the video is not loading and there’s a bunch of spam messages saying they are from you.
@jamesdean5631 Жыл бұрын
Passkey is an alternate application of RSA encryption. I like it. Someone just looked at the problem from a different angle and reapplied our widely popular encryption.
Jason Rebholz - TeachMeCyber
Рет қаралды 24 М.
Pete Matheson
Рет қаралды 11 М.
Enderestories
Рет қаралды 9 МЛН