Why you can trust ZDNET
:ZDNET independently tests and researches products to bring you our best recommendations and advice. When you buy through our links, we may earn a commission.Our process
'ZDNET Recommends': What exactly does it mean?
ZDNET's recommendations are based on many hours of testing, research, and comparison shopping. We gather data from the best available sources, including vendor and retailer listings as well as other relevant and independent reviews sites. And we pore over customer reviews to find out what matters to real people who already own and use the products and services we’re assessing.
When you click through from our site to a retailer and buy a product or service, we may earn affiliate commissions. This helps support our work, but does not affect what we cover or how, and it does not affect the price you pay. Neither ZDNET nor the author are compensated for these independent reviews. Indeed, we follow strict guidelines that ensure our editorial content is never influenced by advertisers.
ZDNET's editorial team writes on behalf of you, our reader. Our goal is to deliver the most accurate information and the most knowledgeable advice possible in order to help you make smarter buying decisions on tech gear and a wide array of products and services. Our editors thoroughly review and fact-check every article to ensure that our content meets the highest standards. If we have made an error or published misleading information, we will correct or clarify the article. If you see inaccuracies in our content, please report the mistake via this form.
Passkeys, in case you haven't heard of them before, are the future. They offer a fast, convenient, and secure alternative to passwords and two-factor authentication login techniques.
When using the Bitwarden web extension, users who visit a passkey-enabled website and start to create a passkey will get a prompt asking them to add the new passkey to their password vault.
Once the passkey is saved, from then on, it will be used securely to log into the website without needing a password, turning a future that's password-free into a reality -- well, at least for websites that support passkeys.
The good news is that the list of websites offering this feature is growing all the time, including big names such as Amazon, Google, eBay, Paypal, WhatsApp, and Uber.
And while you might feel that a method that is simpler and faster than logging into a website with a password might be more insecure (Google estimates that it's some 40% faster), you'd be wrong.
Passkeys are a secure form of cryptographic authentication built using WebAuthn protocols developed by the FIDO Alliance that make use of a pair of keys: A public key stored on passkey-enabled websites and a private key that's stored securely on a user's device.
This means that even if a hacker gets their hands on a website's public key, the user's account is still locked because they don't have access to the private key on the user's device.
So, anything that encourages people to make the shift is a good thing.