PlayStation Adds Support for Passkeys as Password Alternative

[JippaLippa]

Glad to see this system being implemented!

 

[Populus]

More convenient? Since when is depending on an easily stolen portable device for authentication more convenient?

I guess that nobody can authenticate using your stolen device unless they have your fingerprints (Touch ID) or your face (Face ID). I’m not sure if using the passcode, if they have seen it or they can brute-force it, others can authenticate with your device.

And if your device is stolen, and you have other Apple products under your Apple ID, I assume you can keep logging in using those devices… and also block your stolen device.

I say “I guess” because I haven’t started using it, so I’m not sure 100% how it works. Let’s see if anyone can throw a bit of light.

 

[ProfessionalFan]

Works well! Faster than 2FA for sure.

 

[ProfessionalFan]

I guess that nobody can authenticate using your stolen device unless they have your fingerprints (Touch ID) or your face (Face ID). I’m not sure if using the passcode, if they have seen it or they can brute-force it, others can authenticate with your device.

And if your device is stolen, and you have other Apple products under your Apple ID, I assume you can keep logging in using those devices… and also block your stolen device.

I say “I guess” because I haven’t started using it, so I’m not sure 100% how it works. Let’s see if anyone can throw a bit of light.

Yes, this is exactly how it works.

 

[BuffaloTF]

I wonder if Xbox will do this? Or do they already?

Sort of…?

I have 2 factor for mine and it pings my phone to validate thru Authenticator, which I subsequently have locked with Face ID. So I hit “Approve” for the login, I get scanned, I’m logged in. So… I’ve kinda made it a passkey?

 

[MisterSavage]

This is very good news, PlayStation's sign in is uniquely tedious. Email and password are entered separately on two different pages, instead of two fields on the same page, and they have a not-a-robot-test that forces you to rotate the object to face where the hand on the left is pointing. And it's a clunky user interface, too.

You are so right. It's awful. And for some reason they took away the ability to sign in with the app. So when I was visiting family and wanted to sign into my account on their PS4 I had to manually enter each character of my long password with a controller.

 

[Populus]

Yes, this is exactly how it works.

But, people knowing your device passcode can authenticate in your behalf? Or is it restricted to biometrics?

 

[prankster506]

When trying to enable this, I'm receiving an error on my phone saying I need to enable iCloud Keychain when it's already enabled. Anyone experiencing this issue? Thought I'd try turning off Keychain but it won't let me under Passwords and Keychain.

 

[MisterSavage]

But, people knowing your device passcode can authenticate in your behalf? Or is it restricted to biometrics?

It might depend if Stolen Device Detection is turned on if your storing Passkeys with the built in method.

 

[nottorp]

Yes, this is exactly how it works.

Yes, and the problem is you're locked out of your stuff when your phone gets stolen, even if the thief cannot access it.

 

[Morac]

Yes, and the problem is you're locked out of your stuff when your phone gets stolen, even if the thief cannot access it.

The passkey is stored in iCloud so you can get it back if you lose your iPhone. Google is similar. There are also third party cloud stores.

Now one could argue that having your passkeys (private key) stored in the cloud defeats the purpose of the keys being tied to the device you are using, but they are still more secure than passwords.

Also note that Sony allows storing multiple passkeys so you if you don’t use a cloud based passkey you can add multiple devices that way.

 

[Apple Fan 2008]

Cool, glad that they're supporting the PS4 as well.