Using passkeys to log into data rooms
The secure and simple password alternative
Compared to passwords, passkey authentication offers an easier and more secure way to log into data rooms. You don’t need to remember passwords and your login credentials are never sent over the internet, which means greater ease-of-use plus better protection against data theft.
But what exactly are passkeys, and how do they work? How do you create a passkey, and what happens if the device you use to log in is stolen? We answer these and other frequently asked questions below.
What are passkeys and how do they work?
Passkeys are a convenient login method that replaces traditional passwords. Based on cryptographic key pair technology, they offer a secure alternative to traditional passwords. When you register with a web service, two cryptographic keys are generated. A secret private key is stored either on your computer or mobile device, under your password manager, or on your FIDO2 security key (a hardware token similar to a USB stick). In contrast, the online service only stores the public key. When you log in, the web service sends a challenge to your device, which can only be solved using the private key. You simply authenticate yourself using facial recognition, your fingerprint, FIDO2 stick, or device PIN, and the correct response is sent to the web service in the background, granting you access to your account.
What are the advantages of passkeys?
No need to create, remember, or regularly change passwords.
Passkeys are stored on your device, so you don’t need to memorize them.
Unlike passwords, passkeys can’t be too short or easy to guess.
Your account is better protected against phishing and cyber-attacks as no login credentials are sent over the internet.
How secure is the passkey method?
Your private passkey (crypto key) is a long, automatically generated string of characters. Since it remains on your local device (your smartphone, for instance), it cannot be intercepted by phishing attacks and so offers superior security to other login methods.
Even if a potential attacker were to gain access to your device, they would also need your fingerprint, face ID, FIDO2 security key, or PIN to log in.
Which devices can I use to set up a passkey?
Most modern smartphones, tablets, and computers with current operating systems support passkeys, as do all common browsers.
You can save your passkey locally on your PC or mobile device, on a FIDO2 stick, or in your password manager.
For further information, refer to:
Can I store a passkey on multiple devices?
Yes. Google and Apple synchronize passkeys across multiple devices as long as they can verify your biometric data or PIN and they have access to your keys. Google manages passkeys in its operating system password manager and synchronizes them across Android devices via the cloud. Apple stores passkeys in the iCloud keychain, making them available on all devices signed in under the same Apple ID.
Unlike Apple and Google, Windows does not store passkeys in the cloud. However, you can use your smartphone as an external passkey authenticator to log in to other devices by scanning a QR code.
What happens if I change the device I use to log in, or if it is lost or stolen?
If you have created local backups or synchronized your passkey via the cloud, your access can be restored. The same applies to many independent password managers that use the cloud or allow you to export your passkeys manually to a local file. If neither of these options is available, you can still log in to netfiles with your username and password.
Even if you lose your PC, mobile device, or FIDO2 stick, your passkeys are secured against unauthorized access. Your device has to be unlocked with a fingerprint, face scan or PIN for the passkeys to work. Make sure you set a PIN that’s not easy to guess.
What happens if an online service is hacked?
Since online services only store public keys, your private keys and biometric data remain secure. Hackers can’t accomplish anything with just a public key.
How do I create a passkey for logging in to netfiles?
You can find detailed instructions in our Help Center.