AppleInsider is supported by its audience and may earn commission as an Amazon Associate and affiliate partner on qualifying purchases. These affiliate partnerships do not influence our editorial content.
Apple is working toward a future without passwords with a new iCloud Keychain "passkey" feature that was previewed at WWDC 2021.
In a WWDC developer session called "Move beyond passwords," Apple teased a new feature called "passkeys in iCloud keychain." The feature is available for testing in iOS 15 and macOS Monterey, but isn't yet ready for a full release.
Essentially, passkeys are pairs of private and public keys based on the WebAuthn standard. They work basically like a hardware security key, but are stored securely in iCloud Keychain.
This means users won't need to carry hardware keys with them — their iPhone, iPad, or Mac will contain the passkeys. More than that, passkeys will be synced across various devices, meaning they're recoverable even if a user loses all of their devices. Compared to traditional passwords, these passkeys offer a number of security benefits. They aren't guessable, they're not able to be reused across services, and they're not vulnerable to phishing or data breaches.
For users, passkeys will offer an easy and secure alternative to passwords. When implemented, all a user will need to do is authenticate with Face ID to log in. Passkeys in iCloud Keychain would be useable anywhere that supports WebAuthn. Currently, that includes browsers and apps on Apple's platforms, but full adoption of the standard is still a few years off.
As mentioned earlier, the inclusion of passkeys in iOS 15 and macOS Monterey is for developer testing only — it's not actually a feature yet. Apple says that testing the feature in existing apps and workflows is just the first step of a "multiyear effort in replacing passwords."
Although users won't be able to use passkeys immediately, Apple does have a suite of other security and privacy features in iOS 15 and macOS Monterey. That includes a new built-in authenticator for two-factor logins, a Private Relay feature that encrypts web traffic and hides a user's IP address, and a feature that will allow users to create proxy email addresses.
Apple isn't the only company looking toward a future without passwords. Google at its I/O conference in May detailed a number of new privacy and security features aimed at replacing passwords.
Follow all of WWDC 2021 with comprehensive AppleInsider coverage of the week-long event from June 7 through June 11, including details on iOS 15, iPadOS 15, watchOS 8, macOS Monterey and more.
Stay on top of all Apple news right from your HomePod. Say, "Hey, Siri, play AppleInsider," and you'll get the latest AppleInsider Podcast. Or ask your HomePod mini for "AppleInsider Daily" instead and you'll hear a fast update direct from our news team. And, if you're interested in Apple-centric home automation, say "Hey, Siri, play HomeKit Insider," and you'll be listening to our newest specialized podcast in moments.