Passkey作用

Asked on 2025-06-16

1 search

Passkeys are a modern authentication method designed to replace traditional passwords, addressing both security and usability issues. They eliminate the risk of phishing and provide a more seamless sign-in experience. Passkeys are non-phishable, meaning they cannot be intercepted or stolen in the same way passwords can. This makes them a more secure option for online accounts.

The transition to passkeys involves several stages, starting with adding them as an additional sign-in method alongside existing phishable factors like passwords. The ultimate goal is to eliminate all phishable factors, making accounts more secure. Passkeys are easier to use, as they don't require users to remember complex passwords, and they offer a faster and more successful sign-in process.

Automatic passkey upgrades allow existing accounts to transition to passkeys without user intervention, providing a seamless path from password-based accounts to passkey-based ones. This process can be integrated into apps and websites, enhancing security while maintaining a smooth user experience.

For more detailed information, you can refer to the session What’s new in passkeys from WWDC 2025.