Password manager provider 1Password has announced that it will allow users to abandon passwords in favor of passkeys as the company pushes towards a passwordless future.
A passkey offers an alternative to passwords by storing a unique digital key on your device, perhaps on your smartphone, a laptop or something else.
The passkey requires you to be actively in possession of your device to access online accounts tied to the passkey, making it much harder for cyber criminals to remotely steal and your usernames and passwords with phishing or malware attacks.
Password theft is still one of the most common and problematic kinds of cyber attack and one which is often the starting point for major cybersecurity incidents, both for people and whole businesses.
“Instead of playing whack-a-mole with passwords, why not eliminate that avenue of attack outright? That’s our mission. It’s why we’re at the forefront of passwordless advocacy, and why we’ve committed to adding full support to 1Password for generating, managing, and using passkeys,” Steve Won, Chief Product Officer at 1Password wrote in a blog post.
Also: The 6 best password managers: Easily maintain all your logins
So, from later this year, users will be able to use a passkey to unlock their 1Password password manager, rather than using a password.
This helps bring an additional layer of security to passwords, because while using a password manager is highly recommended for improving online security, they’re still ultimately protected by a password – and it’s possible to breach a password.
That means, if an attacker stole or guessed the password for your password manager, they could potentially gain access to all the accounts it holds passwords for. But for 1Password users, soon that won’t have to be the case, because they can switch to a passkey instead, preventing unauthorised intruders from accessing the 1Password account.
“We’re incredibly excited to announce that, starting this summer, you’ll have the option to create and unlock your 1Password account using only a passkey! No passwords required,” said Won.
Also: How to protect and secure your password manager
While 1Password does currently offer the ability to unlock accounts with biometrics, the company points out that they don’t replace the password, they only mask it – which is why the application occasionally asks for the password, to make sure you still have it.
1Password also notes that it might sound counter-intuitive to not use passwords – after all, not using a password sounds like it will allow anyone to gain access to the account no matter what. But the reason a password isn’t required is because the unique passkey is stored on your device.
“Unlike user-created passwords, passkeys are strong and unique by default. They’re generated and stored on your devices, and they’re never shared with our cloud service,” said Won.
1Password aims to start introducing the passkey feature in “early 2023”, starting with the browser extension and desktop apps, with mobile support to follow.
MORE ON CYBERSECURITY