Passkeys offer a promising alternative to traditional passwords, but their adoption is hindered by human nature. Many users remain unaware of what passkeys are and how they work, leading to confusion and frustration. Websites often fail to provide clear explanations, leaving users in the dark. The lack of mandatory implementation and the presence of more familiar security methods make passkeys less appealing.
The biggest challenge lies in addressing potential risks associated with passkeys, such as losing or damaging the physical device linked to the local private encryption key. While multiple devices can mitigate this risk, a reliable backup system is crucial for secure access. In practice, passkey adoption has been slowed by real-world friction, including lengthy QR code scanning processes and website errors.
Despite the benefits of passkeys, human nature takes over, causing people to stick with what they know. The path of least resistance often leads users to choose familiar security methods over new technologies. Passkeys are a step in the right direction, but their launch has been marred by execution issues. To overcome these challenges, it’s essential to educate users about passkeys and make them more appealing through clear explanations and implementation.
Source: https://www.howtogeek.com/passkeys-were-supposed-to-replace-passwords-but-theyre-failing-for-the-most-predictable-reason