I m not an expert and i could be wrong, but from my understanding, even though passkeys seem superior to passwords + 2FA methods of logging in to a website, they still are susceptible to a more modern threat, which is session hacking.
We get where you're coming from but passkeys are not meant to be a solution to all possible attacks. They are meant to significantly strengthen the authentication process. How the sessions are handled depends on the implementation of the website and various other factors. What we, as internet users, can do is take actions based on what we can control to keep ourselves safe while exploring 🚀
Since passkeys are super easy to use (in general, even without password manager), websites could shorten session times and force authentication prompts more often, making session hijacking less effective.
I still don't have any idear what a passkey is or how to use it will nordpass passkey work on Google? Stop telling me of the benefits and show how I use it across different sites can I use it for my banking and games shopping please just show how it works
Cool, sounds like something that could give YubiCo a run for its money! It kinda sounds like that two key lock system we see in movies and TV, but digital!
So accounts already setup with a password one signs out and signs in to get prompt for passkey. Can i use yubikey (hardware device) as a first choice if supported and nordpass as second choice using passkey if supported?
Thanks for the question, Fabián. Yes! We will have NordPass Authenticator, which generates two-factor codes, so you wouldn't need to use other apps. The best thing is that it's a patented solution and very secure. Very soon we will launch it for our NordPass Business users and later implement it for the rest of NordPass users.
@@NordPassPasswordManager very good news, this is why i use nordpass, its so simple easy to use, yet offers most secure freatures, also now adding stuff that is needed is great. keep it up
@@NordPassPasswordManager omg this is amazing! I wonder though. Isn't using anOTHER 2fa app (like authy) safer then using your pw manager for both your pw's and 2fa auth's ? I guess it all comes down to having the strongest crazy master password, but imagine your pw-manager being stolen/hacked - then having used another third party 2fa app would still keep you safe.. but in this case you'd loose control of everything at once, get my point ? I love nordpass and will keep using it and the idea of 2FA being built in is just amazing. But I wonder how safe/smart it actually is.
But what about accounts that are already setup? They already have passwords.. Would I need to create new accounts say for paypal in order to have passkey only setup?
Are there a lot of popular websites already that uses this technology (Like Amazon, Nike, etc.)? And is it possible to enable this with an existing account that uses a password?
Hey! If you already have an account with a password on a website that supports passkeys, you should see an option in your Account Setting or Security Settings to create a passkey or to add a security device. Websites that support passkeys can be found here: support.nordpass.com/hc/en-us/articles/12984678202641.
Great question 💡 Our solution is device agnostic, meaning you can access your passkeys on any device you have NordPass on. Just FYI - NordPass cannot support mobile devices yet (emphasis on YET 😉). If you are interested in passkeys technology overall, there are two things worth mentioning: 1. Passkeys can be synced to all the user’s other devices running the same OS platform which are also signed into the same user’s platform account. Thus passkeys created on one device become available on all devices. Although, it depends on the OS and you should check their policy on passkey sync. 2. There is an option to use a passkey from another device through Bluetooth when the other device holding the passkey is physically close.
@@NordPassPasswordManager thanks for replying! But in this case I would still need a device then? I’m talking about you don’t have a device on you, and you need to login to a public pc or something in order to access your account. With a password you can just go anywhere and log in. With this you are always dependent on another device already logged in?
That's my question. It's at least as likely that my house will burn down, my device get stolen or bricked, or I'm in a car crash and need to log in from the hospital emergency room as Nation State Superhacker is going to steal my password. These are the contingencies on my mind, and greater concern than North Korea hacking google.
Yes, it is more secure. 1. It doesn't rely on users to choose sufficiently complex passwords. (An extremely prevalent weakness) 2. It doesn't rely on the services' servers to store a secret that can be stolen, and possibly used to get your password to use on other sites. 3. I think part of the scheme is to not use the same passkey for multiple sites, whereas one common weakness with the traditional password method is password reuse. 4. It's easy to use: It's streamlined using software on your device (like a smartphone) - so users will actually use it.
Thanks for the question 💬 Our solution is device agnostic, meaning you can access your passkeys on any device you have NordPass on. Just FYI - NordPass cannot support mobile devices yet (emphasis on YET 😉). If you are not using NordPass, there could be another way. Passkeys can be synced to all the user’s other devices running the same OS platform which are also signed into the same user’s platform account. Thus passkeys created on one device become available on all devices. Although, it depends on the OS and you should check their policy on passkey sync.
Honestly, seeing as you have to use your biometric data to log in, it's not really private when they know every time you log in and if you were to be tracked, they would know every time you logged in to it. At least with passwords, you can hide your IP with a VPN and still be anonymous. If you login with your biometric data, they know it's you every time kind of defeats the point of being private
![[Tutorial] How to Integrate HackerRank with easy.jobs Hiring Management Solution?](http://i.ytimg.com/vi/zuYMj-oLJa4/mqdefault.jpg)
![Felix "Unfair" | [Stray Kids : SKZ-PLAYER]](http://i.ytimg.com/vi/Oswujxm2Ag0/mqdefault.jpg)
I m not an expert and i could be wrong, but from my understanding, even though passkeys seem superior to passwords + 2FA methods of logging in to a website, they still are susceptible to a more modern threat, which is session hacking.
We get where you're coming from but passkeys are not meant to be a solution to all possible attacks. They are meant to significantly strengthen the authentication process. How the sessions are handled depends on the implementation of the website and various other factors.
What we, as internet users, can do is take actions based on what we can control to keep ourselves safe while exploring 🚀
Since passkeys are super easy to use (in general, even without password manager), websites could shorten session times and force authentication prompts more often, making session hijacking less effective.
I still don't have any idear what a passkey is or how to use it will nordpass passkey work on Google?
Stop telling me of the benefits and show how I use it across different sites can I use it for my banking and games shopping please just show how it works
For a moment, i thought he was Zelensky
Wait. That's not him?! 🤯
Cool, sounds like something that could give YubiCo a run for its money! It kinda sounds like that two key lock system we see in movies and TV, but digital!
So accounts already setup with a password one signs out and signs in to get prompt for passkey. Can i use yubikey (hardware device) as a first choice if supported and nordpass as second choice using passkey if supported?
Thank you. Good presentation.
Hmmm. I already have trouble with devices being recognised even though I select the option to remember that device.
Is there any chance that NordPass will include a 2FA module in the future that could be an alternative to Authy or Google Authenticator?
Thanks for the question, Fabián. Yes! We will have NordPass Authenticator, which generates two-factor codes, so you wouldn't need to use other apps. The best thing is that it's a patented solution and very secure. Very soon we will launch it for our NordPass Business users and later implement it for the rest of NordPass users.
@@NordPassPasswordManager Great! Thanks!
@@NordPassPasswordManager Excellent! Can't wait to try it out
@@NordPassPasswordManager very good news, this is why i use nordpass, its so simple easy to use, yet offers most secure freatures, also now adding stuff that is needed is great. keep it up
@@NordPassPasswordManager omg this is amazing! I wonder though. Isn't using anOTHER 2fa app (like authy) safer then using your pw manager for both your pw's and 2fa auth's ?
I guess it all comes down to having the strongest crazy master password, but imagine your pw-manager being stolen/hacked - then having used another third party 2fa app would still keep you safe.. but in this case you'd loose control of everything at once, get my point ?
I love nordpass and will keep using it and the idea of 2FA being built in is just amazing. But I wonder how safe/smart it actually is.
Excellent info, thank you
But what about accounts that are already setup? They already have passwords.. Would I need to create new accounts say for paypal in order to have passkey only setup?
Amazon/google are supporting passkey. I already use passwords for those twom can I move to passkey?
Are there a lot of popular websites already that uses this technology (Like Amazon, Nike, etc.)?
And is it possible to enable this with an existing account that uses a password?
Yes. Just sign out. And sign in and its gonna ask you to use Passkey.
Hey! If you already have an account with a password on a website that supports passkeys, you should see an option in your Account Setting or Security Settings to create a passkey or to add a security device. Websites that support passkeys can be found here: support.nordpass.com/hc/en-us/articles/12984678202641.
I`m a customer, but why I need NordPass for passkey? I could use any browser extension, right?
How does that work on a new device? Or if you're logging in to say a public computer if you lost your phone?
Great question 💡 Our solution is device agnostic, meaning you can access your passkeys on any device you have NordPass on. Just FYI - NordPass cannot support mobile devices yet (emphasis on YET 😉).
If you are interested in passkeys technology overall, there are two things worth mentioning:
1. Passkeys can be synced to all the user’s other devices running the same OS platform which are also signed into the same user’s platform account. Thus passkeys created on one device become available on all devices. Although, it depends on the OS and you should check their policy on passkey sync.
2. There is an option to use a passkey from another device through Bluetooth when the other device holding the passkey is physically close.
@@NordPassPasswordManager thanks for replying! But in this case I would still need a device then? I’m talking about you don’t have a device on you, and you need to login to a public pc or something in order to access your account. With a password you can just go anywhere and log in. With this you are always dependent on another device already logged in?
That's my question. It's at least as likely that my house will burn down, my device get stolen or bricked, or I'm in a car crash and need to log in from the hospital emergency room as Nation State Superhacker is going to steal my password. These are the contingencies on my mind, and greater concern than North Korea hacking google.
Can this also be used for accounts that we already have - not just for signing up for new accounts?
Hi there. Of course, as long as the website/app that you are using supports passkeys. 🔒 -G.M.
@@NordPassPasswordManager How would I know if the website/app supports passkeys?
Is passkey a more secure method than the traditional password method? Or what is the main advantage?
Yes, it is more secure. 1. It doesn't rely on users to choose sufficiently complex passwords. (An extremely prevalent weakness) 2. It doesn't rely on the services' servers to store a secret that can be stolen, and possibly used to get your password to use on other sites. 3. I think part of the scheme is to not use the same passkey for multiple sites, whereas one common weakness with the traditional password method is password reuse.
4. It's easy to use: It's streamlined using software on your device (like a smartphone) - so users will actually use it.
@@H4KnSL4K Ok, thanks for the information
I've never seen a website ask for this, but I guess it will take some time.
Zalensky explains Passkey. TOP!
cool... but if I lets say for example I have PayPal account with password already stored in NordPass, how to change this password to passkey?
Just sign out. And sign in and its gonna ask you to use Passkey.
your video and 1passwords video about passkeys use the exact same music...!?
What if i loose device? Can i still access my data and how? Thanks
Hi there. Of course, your passkey can be stored in your NordPass vault and you can use it on any device. -G.M.
So if they hack your computer they have access to your passkey right? All they have to do is just signing and press the passkey
Great, I'll try it out when I'm creating a new account somewhere. Always good to see new improvements in cybersecurity.
I HOPE MORE AND MORE COMPANY GONNA ADAPT TO PASSKEY SYSTEM…..its just epic
Zelensky went from president to password. 😂
Im a customer, and this slow guy reading the teleprompter just for a few phrases makes me think about another option for password managers.
How if i lost my device?
Thanks for the question 💬 Our solution is device agnostic, meaning you can access your passkeys on any device you have NordPass on. Just FYI - NordPass cannot support mobile devices yet (emphasis on YET 😉).
If you are not using NordPass, there could be another way. Passkeys can be synced to all the user’s other devices running the same OS platform which are also signed into the same user’s platform account. Thus passkeys created on one device become available on all devices.
Although, it depends on the OS and you should check their policy on passkey sync.
Honestly, seeing as you have to use your biometric data to log in, it's not really private when they know every time you log in and if you were to be tracked, they would know every time you logged in to it. At least with passwords, you can hide your IP with a VPN and still be anonymous. If you login with your biometric data, they know it's you every time kind of defeats the point of being private
Why is Zelenskyy explaining to me how to use security correctly? 😅..... Just kidding, I use all your services🙏
We're glad to have you with us! Stay safe. -Neo
bro seems like Volodymyr Zelenskyy
This is NOT a good idea.
It's makes your accounts more prone to Hacking.
Better and SAFER to use a PASSWORD each and every time you access an account.
It is very annoying to watch you talk when you are clearly reading the text at an angle. This video is very annoying.
Poorly presented
Zelensky
Why is Zelensky here