Hardware keys can be stolen, lost, hacked or damaged. Passwords are still more secure period. Just write them down, make a copy, and store it somewhere safe or try to remember it.
Assume you would lump Passkeys in there also, since devices can be stolen? Most people store a secondary key in a safe location to address your concern. Do you advocate 2FA and if so what type? Appreciate the feedback!
Hardware keys simply require a different kind of care than passwords. Passkeys are objectively more secure than passwords, but there is no doubt there are tradeoffs. Passwords are regularly stolen, hacked, phished, forgotten, cracked, or lost. Passkeys can't be cracked, phished, or forgotten, but they do need to be managed properly. You can still lose them or lose access to them, if you don't fully understand what you are doing. I'm currently subscribed to Bitwarden, and that account is protected with a 44-character password and a Passkey. I manage some Passkeys from Bitwarden, but I also have a Yubico Security Key. I also use Windows Hello and Google for some Passkeys as well. I try to have redundancies and contingencies, so I don't paint myself into a corner.
Sounds like you have a fantastic security posture. We recommend a hardware security keys whenever possible. Always add a second key and keep that second key and a safe location.
Hardware keys can be stolen, lost, hacked or damaged. Passwords are still more secure period. Just write them down, make a copy, and store it somewhere safe or try to remember it.
Assume you would lump Passkeys in there also, since devices can be stolen? Most people store a secondary key in a safe location to address your concern. Do you advocate 2FA and if so what type? Appreciate the feedback!
Hardware keys simply require a different kind of care than passwords. Passkeys are objectively more secure than passwords, but there is no doubt there are tradeoffs.
Passwords are regularly stolen, hacked, phished, forgotten, cracked, or lost. Passkeys can't be cracked, phished, or forgotten, but they do need to be managed properly. You can still lose them or lose access to them, if you don't fully understand what you are doing.
I'm currently subscribed to Bitwarden, and that account is protected with a 44-character password and a Passkey. I manage some Passkeys from Bitwarden, but I also have a Yubico Security Key. I also use Windows Hello and Google for some Passkeys as well. I try to have redundancies and contingencies, so I don't paint myself into a corner.
Sounds like you have a fantastic security posture. We recommend a hardware security keys whenever possible. Always add a second key and keep that second key and a safe location.