I checked and it was switched on in iOS, but still didn’t work reliably.
I’m glad you’re having great success with them and enjoy using them, but several of us here report difficulties with them.
For now, I’m sticking with usernames and passwords. After the kinks get worked out and sites no longer require a password and username in addition to a passkey (which nullifies the security advantage) I’ll consider using them.
I haven’t listened to the episode yet but my main question with Passkeys is what happens if I lose my iPhone or I replace it? Currently using 1Password if that matters.
If you replace the device, they will sync to the new device via iCloud Keychain (or 1Password, Bitwarden, etc.), and you continue to use them as usual. They stay in sync and so can be used across devices anyway. They are not tied to a particular device.
If you lose the device, there’s still no reason to revoke them, as they are protected by being stored in the secure enclave (iCloud Keychain) or however 1Password protects its content like passwords. Even if someone gets hold of your device, the use of passkeys needs to be authorised via Face ID. You erase the device remotely, and you should be fine.
If you still want to change passkeys, you go to the website where you use them, revoke the old one, and create a new passkey, which will then again automatically sync across devices once added to the iCloud Keychain, or Bitwarden, 1Password etc.
One of the weakest shows in a long time. Little new or less than superficial contents. Why this particular guest was chosen is not obvious, but he didn’t get much opportunity to say anything anyway.
Do people use both 1Password AND Apple’s password system for some websites. I am inclined to always say yes when asked Do I want to save password? I just don’t like the hassle of getting on the website and anything that will make the process easier or faster is appreciated. I am sure that I have duplicated information in these apps.
Is there some problem with this?
Most of my web use does not involve nuclear secrets.
Probably no problem if you’re reliably putting passwords into both apps. Possibly a problem if you accidentally only put a password into one app and then later need it and can’t find it so you go and make another one.
Ironically I just asked a question about this. I hadn’t looked at recent shows which is unusual for me. One thing that wasn’t mentioned is how overwhelming a lot of this is. Even for ‘mid level’ power users like me who are not really IT whizzes too. If people know what I mean. A lot of us are terrified, as the instructions whizz by at lightening speed, that we will not understand what we are doing and anyway, one day we will fail to get back into our password managers or whatever. As I described that happened to me recently. LastPass ‘help’ didn’t and I changed to 1Password on advice from folk here. Advice on password manager needed - #22 by TudorEynon
Following this episode, I have listened to a couple of Damien’s podcasts, and he does have some good content and useful insights there. I’d say he’s definitely a Mac power user though he’s aiming for a particular niche (entrepreneurs using Macs and iOS).
However, David and Stephen dominated in the episode, and Damien was sadly not given a chance to contribute and advance the discussion beyond the obvious and what we already know.
I believe the hosts are responsible for ensuring their guests’ expertise shines through when planning and editing the show. The spotlight should be on the guest. This was not the case here.
I am always tempted to do the same because it seems like it would be so much easier but I fear something going wrong and ending up with a mess. So I always say no and get it into 1pw.
I just finished listening to this episode and respectfully disagree. I thought it was a decent review of what’s going on with passwords and passkeys. Damien chimed in with many good tidbits at various points. I thought David and Stephen both did a good job covering a number of topics. As with @Jeagar52 , I’m inclined to go slow in adopting passkeys.
I agree it would have been great to hear more from Damien—but thought it was helpful. I thought it was ‘classic’ MPU—ramping up in terms of knowledge throughout the show. Yes, a majority of the episode was things regular listeners already know (but do we do it?) and then increased in complexity/‘newness’ in the discussion about passkeys.
I’ve started working through implementing passkeys (I’d already done it for some sites which prompted for it at login, but now actively looking for it) because of better understanding how they work.
I listened to the complete episode today and thought Damien’s contributions were sufficient and helpful. Overall, I thought it was an excellent episode.
I’m all for more efficient and secure ways to log into sites that need security. I tire of maintaining passwords for sites that simply want to maintain a user database and for which security is not an issue.
For me, the Passkey implementation just won’t work. Face ID on my phone is fine, but when I move to the iPad or Mac, the only option I have is TouchID which simply refuses to work consistently for me.
As far as I can see, username/password/SMS 2FA is my only choice.
Bitwarden will let you authorise the use of passkeys with the master vault password on desktop. That could be the case for other password managers that support passkeys as well.
Excellent article by 1Password about the security of different authentication methods:
I’ve changed my mind and decided to give passkeys another shot. We’ll see how it goes! 
