As digital security threats continue to evolve, the tech industry seeks innovative solutions to traditional pitfalls, such as password vulnerabilities. Leading the charge, Microsoft introduces expanded passkey support, a groundbreaking step away from password dependency. This initiative is part of a broader, joint effort by tech giants to usher in a passwordless era, leveraging built-in authentication methods like facial recognition and fingerprints for increased security and convenience.
Passkeys, grounded in public-private key cryptography, offer a promising solution to phishing and other cyber threats by ensuring access is tightly bound to the user's device and identity. Their adoption reflects a significant shift in our approach to digital security, aligning with the FIDO Alliance's standards and aiming to outpace attackers by eliminating the weakest link: passwords themselves.
Public preview: Expanding passkey support in Microsoft Entra ID. The need to remember lengthy, complicated passwords could soon be a thing of the past. This is due to passkeys, a new login technology that uses the authentication features of your devices.
Passkeys are more secure than passwords or PINs, as they cannot be stolen. They allow access to supported websites, apps, and services through mechanisms like Face ID or fingerprint recognition. Built on WebAuthn tech, passkeys are stored directly on your device and can be used with hardware security keys.
Apple, Google, and Microsoft Entra announced passkey support in their platforms in 2022. Password managers like 1Password and Dashlane also support the technology, facilitating the backup and sync of passkeys across devices. As of 2024, 20 percent of the world's top websites now support passkeys, covering over 13 billion accounts.
It's expected that passkeys will eventually replace passwords. This blog post follows all updates and developments in the passkey integration, including which companies are preparing for a passwordless future.
To defeat phishing attacks, Microsoft Entra is employing passkeys. These are phishing-resistant authentication methods that work with any resource supporting the W3C WebAuthN standard. The evolution of the FIDO2 standard has allowed for a move towards a passwordless system.
Passkeys provide high security by being URL-specific, device-specific, and user-specific. This makes them nearly impossible to phish. Users can host their passkeys on hardware security keys or devices like phones, tablets, or PCs, making them versatile and secure.
Device-bound passkeys and syncable passkeys serve different organizational needs. Device-bound passkeys offer extreme security but are not as flexible as syncable passkeys, which can be backed up and shared between devices. This flexibility helps transition away from passwords while maintaining high security.
Syncable passkeys ease many usability challenges, offering high security without the need for passwords. Microsoft's roadmap for 2024 includes support for both device-bound and syncable passkeys in Microsoft Entra ID and Microsoft consumer accounts. The aim is to make syncable passkeys the preferred option.
Device-bound keys in Microsoft Authenticator are essential for highly regulated customers, providing a secure but familiar way to sign in. This system meets strict requirements while offering ease of use. Organizations become responsible for managing these passkeys, emphasizing the importance of device-bound security in certain sectors.
Microsoft's commitment to passwordless authentication is strong, with ongoing enhancements planned for its products. Feedback is encouraged to help refine and expand passwordless options for users worldwide.
Microsoft Entra ID passkey support, public preview passkey Microsoft, expanding passkey support Entra ID, Microsoft Entra ID passkey expansion, Entra ID passkey public preview, Microsoft passkey support enhancement, Entra ID Microsoft passkey features, Microsoft authentication passkey Entra