Passkeys should replace passwords, says GCHQ cyber agency
GCHQ’s National Cyber Security Centre (NCSC) has heralded “a new era of secure sign in,” saying that passkeys are “now ready for mass adoption. Passwords are “no longer resilient enough for the contemporary world, according to a new report published on Day Two of CYBERUK conference in Glasgow.
It encourages consumers to “migrate to passkeys where possible to unlock [a] simpler and safer digital lifestyle.”
Passkeys are a new method to log into an online account. They only requires the user’s approval rather than needing them to input a password, making them “quicker and easier to use and harder for cyber attackers to compromise,” according to NCSC, which added that they should now be “consumers’ first choice of login across all digital services.”
“Overhauling decades of security practice,” the NCSC says it “has taken the decision to no longer recommend individuals use passwords” if a passkey is available, adding that “passwords lack the relative resilience to modern cyber threats.”
A new technical report, published on Day Two of CYBERUK, the UK government’s flagship cyber security event in Glasgow, shows that a passkey can be at least as secure as, and generally more secure than, pairing the strongest password with two-step verification (2SV).
Many online service providers have already began to use passkeys, such as Google, eBay and PayPal. Google says its data shows that the UK leads in their global adoption, reporting that just over half of its active users already have one registered.
Stay tuned to EyeOnLondon for the latest news and expert opinions.
Follow us on:
Subscribe to our YouTube channel for the latest videos and updates!
We value your thoughts! Share your feedback and help us make EyeOnLondon even better!
