Microsoft Edge Adds Passkey Support via Password Manager

Microsoft Edge has introduced passkey support through its Password Manager, enabling users to securely store and synchronize passkeys across Windows devices. This update enhances online security by providing a password-free login experience using biometric authentication.

What are Passkeys?

Passkeys are a secure alternative to traditional passwords, utilizing device security features like fingerprint scanning, facial recognition, or PIN codes. Built on the FIDO2 standard, passkeys use public-key cryptography to store a unique private key for each website, while the website stores only the public key. This method reduces the risk of account compromise even in the event of a data breach.

Benefits of Using Passkeys

Enhanced Security: Passkeys are resistant to phishing and credential stuffing attacks, offering a more secure login method than traditional passwords.
Simplified Login: Users can forget complex passwords and use biometric authentication for faster and easier logins.
Cross-Device Compatibility: Passkeys sync securely via a Microsoft account and are currently available on Windows devices.
Privacy-Focused Design: Biometric data is processed locally, and websites only receive cryptographic proof of authentication.

How to Use Passkeys in Microsoft Edge

The Microsoft Password Manager in Edge securely stores passkeys on Windows devices. Passkeys are protected by a Microsoft Password Manager PIN and can be used to log in to supported websites using fingerprint, facial recognition, or a PIN code. To use passkeys, users need Windows 10 or later, Microsoft Edge version 142 or higher, and a Microsoft account.

Security Measures

Passkeys are stored in the cloud in an encrypted format and are protected by a Microsoft Password Manager PIN. The system logs all PIN unlocking and reset attempts in the Azure confidential ledger for enhanced transparency and security. Users who forget their PIN can reset it from a device with existing passkey access via Edge Settings > Passwords and autofill > Microsoft Password Manager > Settings.

FAQ Highlights

Existing passwords remain untouched and usable.
Passkeys can be added to existing accounts without creating new ones.
Passkeys sync securely via Microsoft account to new devices after PIN verification.
Passkey syncing is currently limited to Windows devices and is unavailable for mobile or work/school accounts.
Passkeys are secure even if a device is stolen, requiring biometric or PIN verification for use.

Additional Information

For more information on Azure confidential ledger, refer to the Azure confidential ledger documentation.