- Microsoft is pushing passkeys with mandatory prompts, leading to a 987% increase in usage.
- Passkeys improve security and simplify logins, moving towards a passwordless future.
What happened: Microsoft enforces passkey adoption to enhance security
Microsoft has been actively promoting the adoption of passkeys over traditional passwords, using a strategy that involves persistent “nudges” to encourage users to enroll in the new authentication system. These nudges, which cannot be permanently dismissed, are part of Microsoft’s broader push to make passkeys the primary method of sign-in. The company revealed that, as a result of these efforts, password use has decreased by 10%, while passkey use has surged by 987%. Passkeys rely on public key cryptography, where a private key is securely stored on the user’s device, such as a PC or smartphone, and the corresponding public key is kept on the server. This system eliminates the need for passwords or two-factor authentication (2FA), making logins faster and more secure. Microsoft did not reveal exact adoption numbers but is confident that, with its reimagined sign-in experience, passkeys will become the norm for hundreds of millions of users in the near future.
Also read: WhatsApp starts rolling out Passkeys on iOS
Also read: Mastercard partners with Sympla and Yuno to launch Payment Passkey
Why it’s important
Microsoft’s push for passkey adoption addresses the widespread security issues tied to traditional password use. Passwords are the most common target for cyberattacks, with weak or reused credentials being a leading cause of data breaches. By encouraging users to transition to passkeys, Microsoft is helping to eliminate these vulnerabilities. Passkeys rely on public key cryptography, where a private key is stored securely on the user’s device, making it much harder for hackers to steal user credentials. Unlike passwords, which can be exposed in data breaches, passkeys are unique to each service, preventing issues like credential reuse attacks.
Moreover, passkeys eliminate the need for passwords or two-factor authentication (2FA) during logins, making them faster and more user-friendly while maintaining strong security. As part of the FIDO2 Project, Microsoft’s efforts align with the broader industry goal of establishing a global passwordless authentication standard, supported by major tech companies like Apple and Google. This shift will lead to a more secure, streamlined online experience for users worldwide.
However, challenges remain. For instance, users may face difficulties if they lose access to a device storing their passkeys, and the portability of passkeys across different platforms and services is still a work in progress. Despite these hurdles, Microsoft’s strategy is setting the stage for a future where passwords are no longer the weak link in digital security, fostering both stronger protection and better user experience.