#Passkeys

The New Oil

@thenewoil.org

2 days ago

Microsoft brings phishing-resistant Windows sign-ins via Entra passkeys Microsoft is rolling out passkey support for Microsoft Entra on Windows devices, adding phishing-resistant passwordless authentication via Windows Hello. [...]

#Microsoft brings #phishing-resistant #Windows sign-ins via #Entra #passkeys

www.bleepingcomputer.com/news/microsoft/microsoft...

#cybersecurity

Nishant Kaushik

@nishantkaushik.com

3 days ago

If you're in the NYC area, and like talking about moving from #MFA to #StrongAuthentication, the #DigitalCredentials and #DigitalWallets revolution, #passkeys, or the acronym soup in #DigitalIdentity, you might be an #IDPro.
And you need to be at todays #Identibeer.
(Last years trial run was 👍🏽)

Auth Updates Bot

@2fa.mastodon.social.ap.brid.gy

5 days ago

Add Aliexpress & Premise Health (#70) · 2factorauth/passkeys@f3a6558 * add Aliexpress; add Premise Health * Delete redundant icon aliexpress.com.svg Signed-off-by: Carl <Carlgo11@users.noreply.github.com> * Update icons/p/premisehealth.com.svg Co-authored-...

Add Aliexpress & Premise Health (#70)

#passkeys

github.com/2factorauth/passkeys/com...

Paris Web

@paris-web.fr

6 days ago

Passkeys, en pratique — Paris Web Tout le monde a des mots de passe - et beaucoup de personnes n’en ont qu’un ! - Ils se font voler par millions par des hackers et circulent sur internet : une bombe à retardement en termes …

Lors de Paris Web 2025, @garnier.wf nous a expliqué ce que sont les passkeys et comment s’en servir. La vidéo de sa conférence est en ligne.

www.paris-web.fr/2025/confere...

#passkeys #sécurité #authentification

Anthony Accioly

@anthony.accioly.social

6 days ago

Achievement of the day: I just finished migrating my passkeys and 2FA secrets away from Google and Microsoft. I also removed Google Authenticator from all my devices.

Microsoft Authenticator is now down to a single device with a couple of entries from clients that won't provide alternatives.

I […]

FALCON Cyber Intelligence ©️

@falcon-cyber.bsky.social

1 week ago

Bitwarden adds support for passkey login on Windows 11

Finally, a password manager that lets you log in with something you'll definitely lose faster than your master password. 🔑💀

🔗 news.falconcyber.online/en/news/20260304-bitward...
#bitwarden #passkeys #cybersecurity

.NET Drip

@dotnetdrip.com

1 week ago

Set the AMR Claim When Using Passkeys Authentication in ASP.NET Core

Passkeys are great until your amr claim says the wrong thing. Damien Bowden covers returning pop correctly and requiring phishing resistant auth via acr_values in ASP.NET Core.

#aspnetcore #openidconnect #passkeys

David @ InnoVirtuoso

@innovirtuoso.bsky.social

1 week ago

Unlocking the Future of Security: Meta’s Full Passkey Support for Facebook & Messenger on Mobile Devices As digital security evolves, Meta, formerly known as Facebook, is taking a monumental step forward. The tech giant is set to introduce full passkey support for both Facebook and Messenger apps on iOS and Android. This game-changing feature promises to offer secure and phishing-resistant login option

🚀 Unlocking the Future of Security! Meta introduces full passkey support for Facebook & Messenger on mobile. Enhance your online safety today! 🔐📱 Read more: https://innovirtuoso.com/cybersecurity/untitled-post/ #Cybersecurity #Meta #Passkeys #Privacy

MojoAuth

@mojoauth.com

1 week ago

Passkeys are mainstream — but removing passwords doesn’t fix auth architecture. The secret changed, the flow often didn’t. Recovery and device lifecycle become the new risk.

Passkeys raise the floor. Architecture defines the ceiling.

#passkeys #MojoAuth

Auth Updates Bot

@2fa.mastodon.social.ap.brid.gy

2 weeks ago

Add Canva (#68) · 2factorauth/passkeys@e3035b6 FIDO2 Passkey directory. Contribute to 2factorauth/passkeys development by creating an account on GitHub.

Add Canva (#68)

#passkeys

github.com/2factorauth/passkeys/com...

Chester Wisniewski 🇨🇦

@chetwisniewski.securitycafe.ca.ap.brid.gy

2 weeks ago

RE: infosec.exchange/@timcappalli/11614351473...

I would really hate to see passkeys lose momentum because of short-sighted implementations that cause users to dislike and lose trust in secure authentication. Listen to tim. Tim has a good point. #passkeys #infosec

Ed Berrevoets

@emberrevoets.bsky.social

2 weeks ago

Unbelievable that #Hilton is still using this. Stop with the puzzles and image challenges to block #bots. #Privacy and usability matter more. Implement #passkeys and #OTP. This feels like a relic from another era.

Tim Cappalli

@timcappalli.me

2 weeks ago

Please, please, please stop using passkeys for encrypting user data Passkeys are the future of authentication, but using them for data encryption is a disaster waiting to happen. Overloading these credentials creates a dangerous blast radius that can lead to the irrev...

Please, please, please stop using #passkeys to encrypt user data. Please 🙏🏻

blog.timcappalli.me/p/passkeys-p...

Nishant Kaushik

@nishantkaushik.com

2 weeks ago

RP ID deep dive  |  web.dev Learn how to configure your RP ID and platform associations to enable seamless passkey authentication across subdomains, multiple sites, and mobile applications.

Understanding RP IDs (Relying Party IDs) is critical to deploying passkeys correctly and gaining the benefit of phishing-resistant authentication. This post by Eiji Kitamura is a good deep-dive for those looking to #UsePasskeys.
#Passkeys #PhishingResistance @fidoalliance.bsky.social

Eiji Kitamura / えーじ

@agektmr.com

2 weeks ago

RP ID deep dive  |  web.dev Learn how to configure your RP ID and platform associations to enable seamless passkey authentication across subdomains, multiple sites, and mobile applications.

A deep dive into the very basic concept of #passkeys — RP ID (Relying Party ID)
- How to determine a suitable RP ID for your service
- What if you have multiple domains
- RP ID for apps
web.dev/articles/web...

Eiji Kitamura / えーじ

@agektmr.com

2 weeks ago

RP ID deep dive  |  web.dev Learn how to configure your RP ID and platform associations to enable seamless passkey authentication across subdomains, multiple sites, and mobile applications.

A deep dive into the very basic concept of #passkeys — RP ID (Relying Party ID)
- How to determine a suitable RP ID for your service
- What if you have multiple domains
- RP ID for apps
web.dev/articles/web...

FIDO Alliance

@fidoalliance.bsky.social

2 weeks ago

🚀 Thanks for attending yesterday's FIDO Webinar "The Spectrum of Authentication: How BankID Norway Unifies Passkeys"

➡️ Registrants can watch the presentation on demand: event.on24.com/wcc/r/522456...

#passkeys #authentication

otoshek

@otoshek.bsky.social

2 weeks ago

Your cloud is ready before your code is. The first feature you push goes straight to production. Infrastructure, CI/CD, auth, and billing already handled.

otoshek.com

#webdevelopment
#clouddeployment
#continuousintegration
#stripeintegration
#authentication
#passkeys
#sociallogin
#azure
#gcp

Damien Bowden

@damienbod.com

2 weeks ago

Updated: OpenIddict examples using BFF with Angular and Vue.js

github.com/damienbod/bf...

github.com/damienbod/bf...

Support for passkeys.

#aspnetcore #dotnet #angular #vuejs #bff #openiddict #openidconnect #oidc #passkeys

i2develop

@i2develop.bsky.social

2 weeks ago

🔑🚫🚀 Traditional passwords are the #1 target for AI-driven phishing. Switch to Passkeys where possible—they’re phishing-resistant, use biometrics, and mean no more forgotten secrets. Upgrade your login, upgrade your life! 🛡️✨ #Passkeys #CyberSecurity #InfoSec

Damien Bowden

@damienbod.com

2 weeks ago

Updated: OpenIddict with Angular and Blazor WASM BFF OpenID Connect Code Flow with PKCE clients and ASP.NET Core APIs

github.com/damienbod/As...

#openiddict #passkeys #openid #oauth #grpc #angular #net10 #dotnet

@dima11235813.bsky.social

2 weeks ago

Smartphone Security Hygiene 2026: Full Protection Guide Master smartphone security in 2026. Learn passkeys, call screening, phishing defense, data broker removal, and digital identity sovereignty.

🚨 Quick thread on 2026 smartphone security.

Your phone is now the master key to your entire life—bank, crypto, 2FA codes, identity documents, all on one device.

www.learninternetgrow.com/security-sma...

#Cybersecurity #DigitalIdentity #Passkeys #Privacy

Markus Eisele

@myfear.com

3 weeks ago

Passwords are a liability.
Passkeys are not a frontend trick.

I wrote a hands-on tutorial showing how to implement Apple #Passkeys with #WebAuthn in #Quarkus.

– Credential storage
– Counters
– Sessions
– Roles
– Production constraints

buff.ly/09c2KnA

#Java #Backend

Claus Malter 🤘🏻+❤️+🐈

@cloonix.bsky.social

3 weeks ago

If, after all these years, #Bluesky is unable to implement #passkeys or any other #2FA method (except email), I don't see a future for the platform. It's almost amateurish.

hic // games. security. privacy.

@hiccups1980.de

3 weeks ago

What are passkeys? Explained in under 4 minutes YouTube video by Microsoft Security

#passkeys are the future!

#security #antiphishing #passwordless #password #password #nopasswordneeded #nodatabreachpossible #hack #hacking #phishing #secure
www.youtube.com/watch?v=bdp8...

Calipia

@calipia.bsky.social

3 weeks ago

Passkeys dans Entra ID : une révolution annoncée, des questions en suspens L'annonce par Microsoft de l'activation automatique des profils de passkeys et de la synchronisation des passkeys dans Entra ID (anciennement Azure Active Directory) à partir de mars 2026 est, à première vue, une initiative louable. Elle vise à simplifier l'adoption de cette technologie sans mot de passe, souvent perçue comme le Graal de l'authentification sécurisée. Nous vous en parlions lors du dernier Briefing avec un sujet dédié pour cela.

L'automatisation des Passkeys par Microsoft dans Entra ID : une avancée majeure, mais attention aux détails techniques ! Décryptons ensemble les enjeux pour vos architectures. #EntraID #Passkeys #Cybersecurite #AuthentificationSansMotDePasse

Halexo Ltd

@halexo.bsky.social

3 weeks ago

Passwordless is finally becoming normal. This carousel shows what passkeys change for MSP identity services in 2026.

#Passkeys #IdentitySecurity #Passwordless #CyberTrends

ChrisRichner

@chrisrichner.fosstodon.org.ap.brid.gy

1 month ago

"eSteuern.LU kann aus Sicherheitsgründen nur mit einem Mobiltelefon genutzt werden. Der Kanton Luzern setzt eine Zwei-Faktoren-Authentifizierung (2FA) per SMS-Code voraus."

Echt jetzt? In einer Zeit, wo verschiedene Anbieter SMS als zweiten Faktor aus sicherheitsgründen nicht mehr akzeptieren […]

Jerrad Dahlager

@nineliveszerotrust.com

1 month ago

March 2026 Entra ID Changes: Passkey Auto-Enablement and Conditional Access Enforcement Microsoft is auto-enabling synced passkeys and closing a Conditional Access gap in March 2026. Both changes affect tenants that have not explicitly configured their settings. This post covers how to a...

If attestation is disabled, Microsoft will allow synced passkeys by default. One of two Entra ID changes is auto-rolling this spring.

Breakdown with audit scripts and architecture guidance.

nineliveszerotrust.com/blog/entra-march-2026-passkeys-ca/

#EntraID #Passkeys #ZeroTrust #CloudSecurity