Back to all videos

What if you lose the device with a passkey?

By Chrome for Developers

CybersecurityDigital AuthenticationPassword Management
Share:

Key Concepts

  • Passkeys: A more secure and convenient alternative to passwords, stored in a password manager.
  • Password Manager: A tool that stores and syncs passwords and passkeys across devices.
  • Cross-device Synchronization: The process of making data (like passkeys) available on multiple devices.
  • Account Recovery: Methods used to regain access to an account if credentials are lost.
  • Two-Factor Authentication (2FA): An additional layer of security beyond a password.

Losing Access to Devices with Passkeys

This section addresses the common concern of what happens if a user loses the device where their passkeys are stored.

  • Current Password System vs. Passkeys:
    • Passwords: Users are solely responsible for remembering them. If forgotten, the only recourse is password reset.
    • Passkeys: Stored in a password manager, which typically syncs them across all signed-in devices.
  • Cross-Device Synchronization Benefits:
    • If a phone is lost, passkeys remain accessible on other devices like laptops or tablets.
    • Upon acquiring a new phone, signing in with the same account (e.g., Google account) restores the passkeys.
    • This significantly improves the user's ability to retain access to their accounts compared to traditional passwords.
  • Security Measures for Synchronization:
    • Password managers implement security measures to prevent synchronization from compromising security.
    • An example cited is the use of a PIN, which encrypts data and is required before accessing data on a new device.

Account Recovery with Lost Passkeys

This section details the procedures for regaining access if a passkey is genuinely lost.

  • Primary Recovery Method:
    • For most websites, the recovery process for lost passkeys will mirror that for forgotten passwords.
    • This typically involves requesting a recovery link via email or SMS.
  • Website-Specific Recovery Options:
    • The specific recovery methods supported are determined by the website owner.
  • Alternative Authentication Methods:
    • Using passkeys with a website does not preclude the implementation of other authentication methods.
    • For instance, if a social account is linked, users might be able to sign in using that on a new device.

Conclusion and Key Takeaways

The video concludes by emphasizing the current state of passkey accessibility and security.

  • Ease of Access and Security:
    • With current implementations, losing passkeys should be difficult.
    • Even in the event of loss, it is not an insurmountable problem.
  • Overall Benefits:
    • Passkeys offer enhanced security.
    • They provide a more convenient authentication experience than ever before.
  • Further Information:
    • Users are directed to a link in the description for more details about "pass keys week."

Chat with this Video

AI-Powered

Hi! I can answer questions about this video "What if you lose the device with a passkey?". What would you like to know?

Chat is based on the transcript of this video and may not be 100% accurate.

Related Videos

Ready to summarize another video?

Summarize YouTube Video