Apple Explains iOS 16.3's New Security Keys Feature

Apple this week shared a support document with details about its new Security Keys for Apple ID feature, available starting with iOS 16.3, iPadOS 16.3, and macOS 13.2. The document provides an overview of the feature and explains how to use it.

Apple advanced security Security Keys screen Feature crop
Apple says the optional security feature is designed for individuals who want "extra protection from targeted attacks, such as phishing or social engineering scams." When it is enabled, signing into an Apple ID requires entering your account's password and then using a FIDO Certified security key to complete two-factor authentication, instead of a traditional six-digit verification code from another Apple device.

Those who enable the feature must be very careful not to lose their security keys, as this could result in losing access to your Apple ID account permanently. For this reason, you must set up at least two security keys, with up to six supported in total.

Apple recommends keeping security keys in more than one place. For example, you could hide a key somewhere at home as a backup solution.

"Keep your security keys in a safe place, and consider keeping a security key in more than one place," the document says. "For example, keep one key at home and one key at work. If you're traveling, you might want to leave one of your security keys at home."

To enable Security Keys for Apple ID on an iPhone or iPad, open the Settings app, tap your name, tap "Password & Security," select "Add Security Keys" and follow the on-screen instructions. On the Mac, open the System Settings app, click on your name, click "Password & Security," click "Add" next to "Security Keys," and follow the steps.

Security keys can be removed at any time by repeating the steps outlined above and tapping or clicking on "Remove All Security Keys," at which point your Apple ID reverts to using a six-digit verification code for two-factor authentication.

Many security keys look similar to a USB thumb drive, with some options available with NFC for wireless use and others equipped with Lightning, USB-C, and/or USB-A ports for direct connectivity with iPhones, iPads, and Macs. Apple recommends a few security keys in the document, such as the YubiKey 5Ci with both Lightning and USB-C.

Apple's document provides some other important details, so it is worth reviewing before enabling the feature. For example, you can't sign in to iCloud for Windows when the feature is enabled, and some types of Apple ID accounts are not supported.

Related Forum: iOS 16

Popular Stories

Generic iOS 18 Feature Real Mock

iOS 18 Available Now With These 8 New Features For Your iPhone

Sunday September 15, 2024 10:09 am PDT by
Following over three months of beta testing, iOS 18 was finally widely released to the public on Monday, September 16. The update is available in the Settings app under General → Software Update on the iPhone XS and newer. Below, we have highlighted eight key new features included in iOS 18, and Apple shared a complete list of new features and changes last week. Note that Apple...
iOS 18 Public Beta Thumb 1

Here's When iOS 18 Rolls Out Today in Every Time Zone

Monday September 16, 2024 3:56 am PDT by
It's that time of year again. Apple is about to release iOS 18, which promises to bring a range of new features and improvements to iPhones worldwide. It's Apple's biggest software update of the year, and the company is expected to release it sometime today – Monday, September 16. Based on past releases, the update is likely to drop at around 10:00 a.m. Pacific Time/1:00 p.m. Eastern...
M4 Mac mini Black Ortho Cooler

Apple Leaks New Mac Mini With 5 USB-C Ports

Monday September 16, 2024 11:40 am PDT by
Apple has seemingly leaked the rumored next-generation Mac mini with five USB-C ports, according to a code change within Apple software that was discovered today by MacRumors contributor Aaron Perris. The code refers to an unreleased Mac mini model with an Apple silicon chip and five ports, which lines up with a previous report from Bloomberg's Mark Gurman that said the next Mac mini will be ...
apple silicon mac lineup wwdc 2022 feature purple

M4 Macs, New iPad Mini, and iPad 11 Expected at Upcoming Apple Event

Sunday September 15, 2024 5:29 am PDT by
Apple will likely hold another event in October this year to announce new Macs and iPads. If so, it would be the fourth time in the last five years that Apple has held an event in October. Last year, Apple held a virtual event on Monday, October 30 to announce new MacBook Pro and iMac models with the M3 series of chips. In his Power On newsletter today, Bloomberg's Mark Gurman reiterated...
16 pro

iPhone 16 Pro Demand Has Been Lower Than Expected, Analyst Says

Sunday September 15, 2024 3:58 pm PDT by
Apple analyst Ming-Chi Kuo today said demand for the iPhone 16 Pro and iPhone 16 Pro Max has been "lower than expected" since the devices became available to pre-order in the U.S. and dozens of other countries on Friday. Kuo said his data is based on a "supply chain survey" and shipping estimates listed on Apple's online store. Kuo estimated that sales of all four iPhone 16 models reached...
m4 iPad Pro Horizontal Feature Purple and Blue

Apple Pulls iPadOS 18 for M4 iPad Pro After Bricking Complaints [Updated]

Tuesday September 17, 2024 11:24 am PDT by
Apple stopped signing the iPadOS 18 update for the M4 iPad Pro models, which means the new software is no longer available to be downloaded and installed at the current time. The update appears to have been pulled following complaints from some iPad Pro owners, who found that the update bricked their devices. There are reports on Reddit from iPad Pro users who had an interruption in the...

Top Rated Comments

now i see it Avatar
22 months ago
iPhone Forum:

I lost my security key and forgot my password. Am I screwed?
Score: 21 Votes (Like | Disagree)
krspkbl Avatar
22 months ago
I bought 2x Yubico Keys for this. Well, not just Apple but my other accounts too obviously. I've been thinking of getting a key for a while but now Apple supports it I might as well jump on it now.

I got the Yubico 5 NFC key. Won't arrive for a couple days but excited to set it up. I'll have a read over the document to familiarise myself with how to set it up. Unfortunatly most people won't care about security keys so I am one of the few who see this is as the biggest feature of 16.3!

Requiring 2x keys will put a lot of people off, I think. I spent almost £100 on the 2 keys. Other accounts allow you to set them up with just 1. I think it's good that Apple requires 2 keys to set it up. If you don't want to spend £100 on security then might as well not bother using a key at all.
Score: 13 Votes (Like | Disagree)
BenGoren Avatar
22 months ago
“For example, you could hide a key somewhere at home as a backup solution.”

No; please don’t do this. You’ll just forget where you put it

“ … and one key at work.”

*PLEASE* don’t do this! Whoever owns the company can trivially steal your account if you do so. Even if you’re the person who owns the company, whoever cleans your office could steal your account.

You should have a secure place at home to keep important documents. At the very least, a drawer of a filing cabinet, but a small fireproof safe is preferable. You can decide the level of security you need, all the way up to a personal bank vault — but don’t rely on obscurity to keep it secure. Keep the backup there.

And it’s a good idea to have a safe deposit box at a bank. Keep the other backup there.

If you really need more than those two backups, then add more safe deposit boxes at different banks, or a locked fireproof safe at a trusted family member’s home, or some other variation on the theme. But you almost certainly don’t need nor want that many backups.

Incidentally, these are also where you should be keeping portable hard drives with backups of whatever data you most care about.

b&
Score: 7 Votes (Like | Disagree)
riverfreak Avatar
22 months ago

Two-factor authentication is enough major PITA. I don't work for the NSA, so major pass.

Anyone else want a phone dongle?

Wonder how long it will be before a future iOS update turns it on by default.

Here's a scenario; some of the ppl using these things will be dealing with nuclear emergencies and will lose their dongle and backup dongle or have them appropriated for espionage. Doesn't anyone at Apple ever think of worst-case scenarios?

I know. Corporate culture.
2FA is a total pain? So is having your bank account drained.

I don’t use sites or services that can’t be bothered to implement 2FA, at a bare minimum via SMS which I despise as it isn’t always VOIP or travel-friendly. I’ve even moved financial institutions as they refused for years to add 2FA.

Security keys FTW. Different strokes I guess.
Score: 6 Votes (Like | Disagree)
ajf.350d Avatar
22 months ago
If Apple would kindly put NFC in iPads and Macs as well this would be even better, and quicker to use.
Not sure why it isn’t.

Regards keeping one at work, ‘they’ would still need to know the actual account username and password, so fairly low risk, and for most people the most obvious/easiest off site option.
Advantage of course if you work in IT and have access to a media safe ?
Score: 5 Votes (Like | Disagree)
krspkbl Avatar
22 months ago

Two-factor authentication is enough major PITA. I don't work for the NSA, so major pass.

Anyone else want a phone dongle?

Wonder how long it will be before a future iOS update turns it on by default.

Here's a scenario; some of the ppl using these things will be dealing with nuclear emergencies and will lose their dongle and backup dongle. Doesn't anyone at Apple ever think of worst-case scenarios?

I know. Corporate culture.
You already need 2FA enabled on your Apple account for things like Airtags, iCloud Keychain, Find my iPhone, Apple Card/Cash, and Sign in with Apple.

I don't think they'll force people to use physical keys but they'll keep pushing 2FA. As it is I don't mind having 2FA enabled as it makes my account secure.
Score: 5 Votes (Like | Disagree)