Google's next step towards a password-free future is here with the announcement that passkeys – a new cryptographic key solution that requires a default device – is coming to Google Accounts on all major platforms.
Starting today, Google users can use passkeys and completely forget passwords and two-step verification codes when signing in.
Passkeys are a safer, more convenient alternative to passwords promoted by Google, Apple, Microsoft and other technology companies aligned with the FIDO Alliance. They can replace traditional passwords and other login systems, such as 2FA or SMS verification, with a local PIN or biometric authentication of a device — such as a fingerprint or face ID.
This biometric data is not shared with Google (or any other third party) and passwords only exist on the end user's devices, which provides greater security and protection as there is no password to steal in a phishing attack .
Google Accounts will ask for your passkey to sign in or verify your identity when it detects sensitive activity
When you add a passkey to a Google account, the platform will start asking for it when you sign in or when it detects any suspicious activity that requires additional verification. Passkeys for Google accounts will be stored on any compatible hardware — such as iPhones running iOS 16 and Android devices running Android 9 — and can be shared with other devices from the operating system using services like iCloud or password managers like Dashlane and later in 1Password.
You can still use someone else's device to temporarily access your Google Account. By selecting the “use access key from another device” option.
This creates a one-time connection and the access key will not be transferred to the new device.
As Google reports, you should never create passkeys on a shared device because anyone who has access to that device will also be able to access your Google account.
