Apple Explains iOS 16.3's New Security Keys Feature

Apple this week shared a support document with details about its new Security Keys for Apple ID feature, available starting with iOS 16.3, iPadOS 16.3, and macOS 13.2. The document provides an overview of the feature and explains how to use it.

Apple advanced security Security Keys screen Feature crop
Apple says the optional security feature is designed for individuals who want "extra protection from targeted attacks, such as phishing or social engineering scams." When it is enabled, signing into an Apple ID requires entering your account's password and then using a FIDO Certified security key to complete two-factor authentication, instead of a traditional six-digit verification code from another Apple device.

Those who enable the feature must be very careful not to lose their security keys, as this could result in losing access to your Apple ID account permanently. For this reason, you must set up at least two security keys, with up to six supported in total.

Apple recommends keeping security keys in more than one place. For example, you could hide a key somewhere at home as a backup solution.

"Keep your security keys in a safe place, and consider keeping a security key in more than one place," the document says. "For example, keep one key at home and one key at work. If you're traveling, you might want to leave one of your security keys at home."

To enable Security Keys for Apple ID on an iPhone or iPad, open the Settings app, tap your name, tap "Password & Security," select "Add Security Keys" and follow the on-screen instructions. On the Mac, open the System Settings app, click on your name, click "Password & Security," click "Add" next to "Security Keys," and follow the steps.

Security keys can be removed at any time by repeating the steps outlined above and tapping or clicking on "Remove All Security Keys," at which point your Apple ID reverts to using a six-digit verification code for two-factor authentication.

Many security keys look similar to a USB thumb drive, with some options available with NFC for wireless use and others equipped with Lightning, USB-C, and/or USB-A ports for direct connectivity with iPhones, iPads, and Macs. Apple recommends a few security keys in the document, such as the YubiKey 5Ci with both Lightning and USB-C.

Apple's document provides some other important details, so it is worth reviewing before enabling the feature. For example, you can't sign in to iCloud for Windows when the feature is enabled, and some types of Apple ID accounts are not supported.

Related Forum: iOS 16

Top Rated Comments

now i see it Avatar
14 months ago
iPhone Forum:

I lost my security key and forgot my password. Am I screwed?
Score: 21 Votes (Like | Disagree)
krspkbl Avatar
14 months ago
I bought 2x Yubico Keys for this. Well, not just Apple but my other accounts too obviously. I've been thinking of getting a key for a while but now Apple supports it I might as well jump on it now.

I got the Yubico 5 NFC key. Won't arrive for a couple days but excited to set it up. I'll have a read over the document to familiarise myself with how to set it up. Unfortunatly most people won't care about security keys so I am one of the few who see this is as the biggest feature of 16.3!

Requiring 2x keys will put a lot of people off, I think. I spent almost £100 on the 2 keys. Other accounts allow you to set them up with just 1. I think it's good that Apple requires 2 keys to set it up. If you don't want to spend £100 on security then might as well not bother using a key at all.
Score: 13 Votes (Like | Disagree)
BenGoren Avatar
14 months ago
“For example, you could hide a key somewhere at home as a backup solution.”

No; please don’t do this. You’ll just forget where you put it

“ … and one key at work.”

*PLEASE* don’t do this! Whoever owns the company can trivially steal your account if you do so. Even if you’re the person who owns the company, whoever cleans your office could steal your account.

You should have a secure place at home to keep important documents. At the very least, a drawer of a filing cabinet, but a small fireproof safe is preferable. You can decide the level of security you need, all the way up to a personal bank vault — but don’t rely on obscurity to keep it secure. Keep the backup there.

And it’s a good idea to have a safe deposit box at a bank. Keep the other backup there.

If you really need more than those two backups, then add more safe deposit boxes at different banks, or a locked fireproof safe at a trusted family member’s home, or some other variation on the theme. But you almost certainly don’t need nor want that many backups.

Incidentally, these are also where you should be keeping portable hard drives with backups of whatever data you most care about.

b&
Score: 7 Votes (Like | Disagree)
riverfreak Avatar
14 months ago

Two-factor authentication is enough major PITA. I don't work for the NSA, so major pass.

Anyone else want a phone dongle?

Wonder how long it will be before a future iOS update turns it on by default.

Here's a scenario; some of the ppl using these things will be dealing with nuclear emergencies and will lose their dongle and backup dongle or have them appropriated for espionage. Doesn't anyone at Apple ever think of worst-case scenarios?

I know. Corporate culture.
2FA is a total pain? So is having your bank account drained.

I don’t use sites or services that can’t be bothered to implement 2FA, at a bare minimum via SMS which I despise as it isn’t always VOIP or travel-friendly. I’ve even moved financial institutions as they refused for years to add 2FA.

Security keys FTW. Different strokes I guess.
Score: 6 Votes (Like | Disagree)
ajf.350d Avatar
14 months ago
If Apple would kindly put NFC in iPads and Macs as well this would be even better, and quicker to use.
Not sure why it isn’t.

Regards keeping one at work, ‘they’ would still need to know the actual account username and password, so fairly low risk, and for most people the most obvious/easiest off site option.
Advantage of course if you work in IT and have access to a media safe ?
Score: 5 Votes (Like | Disagree)
krspkbl Avatar
14 months ago

Two-factor authentication is enough major PITA. I don't work for the NSA, so major pass.

Anyone else want a phone dongle?

Wonder how long it will be before a future iOS update turns it on by default.

Here's a scenario; some of the ppl using these things will be dealing with nuclear emergencies and will lose their dongle and backup dongle. Doesn't anyone at Apple ever think of worst-case scenarios?

I know. Corporate culture.
You already need 2FA enabled on your Apple account for things like Airtags, iCloud Keychain, Find my iPhone, Apple Card/Cash, and Sign in with Apple.

I don't think they'll force people to use physical keys but they'll keep pushing 2FA. As it is I don't mind having 2FA enabled as it makes my account secure.
Score: 5 Votes (Like | Disagree)

Popular Stories

iOS 17

iOS 17.4 Will Add These New Features to Your iPhone

Monday February 19, 2024 6:52 am PST by
Apple last month confirmed that iOS 17.4 will be released in March, and the update includes several new features and changes for the iPhone. Key new features in iOS 17.4 include major App Store changes in the EU and Apple Podcasts transcripts. The update also adds new emoji and includes preparations for the launch of next-generation CarPlay later this year. More details about the new...
apple wallet drivers license feature

Apple Said iPhone Driver's Licenses Will Expand to These 8 U.S. States

Monday February 12, 2024 7:51 am PST by
In 2021, Apple introduced a feature that lets residents of participating U.S. states add their driver's license or ID to the Wallet app on the iPhone and Apple Watch, providing a convenient and contactless way to display proof of identity or age. Unfortunately, states have been slow to adopt the feature since it was first announced in September 2021, with IDs in the Wallet app only available ...
General Apps Messages

Apple Announces 'Groundbreaking' New Security Protocol for iMessage

Wednesday February 21, 2024 6:00 am PST by
Apple today announced a new post-quantum cryptographic protocol for iMessage called PQ3. Apple says this "groundbreaking" and "state-of-the-art" protocol provides "extensive defenses against even highly sophisticated quantum attacks." Apple believes the PQ3 protocol's protections "surpass those in all other widely deployed messaging apps," according to its blog post:Today we are announcing...
samsung galaxy ring

'Apple Ring' Allegedly in Development to Rival Samsung Galaxy Ring

Tuesday February 20, 2024 2:27 am PST by
Apple is speeding up development of a smart ring that can be worn on the finger to track users' health biometrics, claims a new report coming out of Korea. Teaser image of Samsung Galaxy Ring shown at Galaxy Unpacked in January Apple has toyed with the idea of a ring wearable for several years, as indicated by several patents, but with Samsung preparing to bring its own product to market, the ...
New Macs iPads iOS 17 4

New Macs and iPads Coming Soon: What to Expect

Saturday February 17, 2024 3:00 am PST by
Following the launch of Apple's Vision Pro headset, attention has shifted towards what is next on the company's agenda this year. As usual, March should be eventful for Apple, as it is expected to release new MacBook Air, iPad Pro, and iPad Air models during the month. In a recent press release, Apple also confirmed that iOS 17.4 will be released in March. Below, we recap what to expect...
volvo s60 drivers apple maps

iOS 17.4 Beta Adds CarPlay Option to Show Upcoming Maneuvers in Instrument Cluster

Tuesday February 20, 2024 10:47 am PST by
The fourth beta of iOS 17.4 that Apple released today adds a new CarPlay feature, according to the notes that Apple provided to developers. In supported CarPlay vehicles, there's now an Apple Maps option to show information about upcoming maneuvers in the instrument cluster. CarPlay users will be able to swap the display type between the main and instrument cluster by tapping on the map...
m3 macbook pro 14 16

Apple Now Selling Refurbished M3 Pro and M3 Max MacBook Pro Models

Monday February 19, 2024 5:04 pm PST by
Apple today began offering refurbished versions of the 14-inch and 16-inch MacBook Pro models with M3 Pro and M3 Max chip options, offering the machines at a discount for the first time since their October 2023 release. The release of M3 Pro and M3 Max models on Apple's refurbished store comes almost two weeks after the entry-level 14-inch M3 MacBook Pro first appeared on the store....