Passkey adoption for authenticating user access to cloud-hosted applications is on the rise, according to findings from password manager maker Dashlane. While passkeys are still in the early stages compared to traditional passwords, Dashlane’s report reveals a significant increase in usage. Passkey authentications with Dashlane have surged to 200,000 per month, marking a remarkable 400% growth since the beginning of the year.
Among the top 20 fastest-growing sites driving passkey adoption, Amazon leads the pack with an 88.9% growth rate in the three-month period between April and June. Other notable sites driving passkey adoption include Target, Github, PingOne, and Google. The rise in passkey adoption is further evidenced by recent developments such as AWS adding support for FIDO2 passkeys and Google rolling out passkey support across all major platforms.
Carlos Rivera, a principal advisory director at Info-Tech Research Group, highlights the growing interest in passkeys among small and medium-sized businesses. These organizations are turning to credential vault providers like Dashlane for FIDO2 passkey synchronization to enhance security and streamline single sign-on logins.
However, there are challenges associated with passkeys, as noted by David Shipley, CEO of Beauceron Security. While passkeys offer a balance between convenience and security, the risk of losing physical access to devices or keys can present new IT challenges. Shipley emphasizes the importance of resilience strategies to mitigate the risks of password reuse and hardware failure in organizations utilizing passkeys.
Jay Bretzmann, an analyst at IDC specializing in identity and access management, underscores the security benefits of passkeys compared to traditional passwords. Passkeys leverage public/private key pair encryption, similar to the technology safeguarding data and networking sessions. While passkeys are not immune to attacks, Bretzmann believes they offer a more secure alternative to passwords.
In response to the growing interest in passkeys, Bretzmann advises CSOs to consider transitioning to passkeys for platforms and applications that support them. The unique key pairs associated with passkeys and the elimination of the need for users to generate and remember passwords are key advantages that enhance security and user experience.
In conclusion, the momentum behind passkey adoption reflects a broader shift towards passwordless authentication technologies in the cybersecurity landscape. While challenges and potential vulnerabilities exist, the benefits of enhanced security and user convenience make passkeys a compelling solution for organizations seeking to bolster their access controls in the digital age. As the adoption of passkeys continues to accelerate, it is essential for organizations to assess the risks and benefits of integrating this technology into their authentication protocols.