Passkeys are now the default sign-in method for all personal Google accounts. This change will significantly enhance user security, as passkeys cannot be easily guessed or compromised through phishing or leaks. However, the primary advantage is improved convenience – you can access your Google account without having to remember a password or go through a two-step verification process. Next time you log in, Google will prompt you to create a passkey, but you can still choose to use traditional passwords if you prefer.
The concept behind this is quite straightforward. When you opt for passkeys, Google will generate a pair of cryptographic keys. One of these keys, known as the "private key," is stored on your computer or smartphone and safeguarded by biometrics, a PIN, or a password. The other key remains in Google's possession and is considered "public." Only the private key has the ability to decrypt the public key. Therefore, if someone intends to hack your Google account, they must physically access your phone or computer and circumvent the authentication systems (such as biometrics, PIN, or password) employed by your device's passkey manager.
No one has access to your private key, not even you or Google. In the event of a data breach, hackers would only be able to obtain public keys. Additionally, if someone attempts to trick Grandma into sharing her login details, she will have nothing to provide.
It is important to note that passkeys are not exclusive to Google. The FIDO Alliance developed the passkey standard, with contributions from major technology companies like Apple, Google, and Microsoft, who have integrated passkey managers into their operating systems. There are also password managers, such as 1Password, that now support passkey functionality. Passkeys can be transferred between platforms and most passkey managers offer device syncing, ensuring your passkeys are accessible on both your phone and computer. Furthermore, passkeys can be shared with friends and family.
Passkeys not only provide a more convenient sign-in process but also enhance user security. However, Google is among the pioneers in promoting passkeys to its users. Currently, there are only 75 apps and websites offering passkey sign-in. It might take several years for passkeys to completely replace passwords.
We recommend enabling passkeys for your Google account. Regardless of your concern about increased user security, passkeys represent the future. It is advisable to familiarize yourself with passkeys before they become mandatory for all apps and websites. While Google will prompt you to set up a passkey during your next login, you can manually activate passkeys if you're in a hurry.
Source: Google