Amazon Adds Support for Passkeys, Allowing for More Secure Logins

Amazon today announced that it has added passkey support to its desktop sites and mobile apps, allowing customers to sign in to their accounts without the need for a password.

amazon app passkey
Passkeys are a more secure alternative to passwords because a passkey cannot be shared with another person through a phishing attempt or leaked online through a database hack. Passkeys do not require customers to remember a password or add a two-factor authentication code, but they do require a verified device.

Passkeys can be set up in the Amazon settings, and on an iPhone, iPad, or Mac, logging in to an Amazon account can be done with a Face ID or Touch ID scan once the feature is turned on. To enable it, go to Your Account > Login and Security, and choose the Set up option next to Passkeys.

Apple implemented support for passkeys with iOS 16 and macOS Ventura. Passkeys work through a public key that's stored on a website server and paired with a private key that's kept on a specific device. On Apple's devices, passkeys are authenticated with ‌Face ID‌ or ‌Touch ID‌, and two keys must match to allow for a user to log in.

Passkeys rely on iCloud Keychain, which in turn requires two-factor authentication for further protection. Passkeys sync across all of a user's ‌iPhone‌, ‌iPad‌, and Mac devices, but they can also be used on non-Apple devices through a QR code system.

Amazon says that passkey support is available today for all Amazon customers using browsers, and that it will be rolling out to the Amazon app for iOS devices in the near future.

Popular Stories

iPhone 15 Pro Cameras

iPhone 17 Pro Max Will Be First Model to Feature Three 48MP Cameras

Thursday July 11, 2024 12:20 am PDT by
Next year's iPhone 17 Pro Max will feature an upgraded 48-megapixel Tetraprism camera for enhanced photo quality and zoom functionality, according to Apple analyst Ming-Chi Kuo. In his n-iphone-tetraprism-upgrade-ca62dd37e364">latest investor note published to Medium, Kuo said the key specification change would be a 1/2.6" 48MP CIS sensor, up from the 1/3.1" 12MP sensor expected to be used...
Beyond iPhone 13 Better Blue Face ID Single Camera Hole

10 Reasons to Wait for Next Year's iPhone 17

Monday July 8, 2024 5:00 am PDT by
Apple's iPhone development roadmap runs several years into the future and the company is continually working with suppliers on several successive iPhone models simultaneously, which is why we sometimes get rumored feature leaks so far ahead of launch. The iPhone 17 series is no different – already we have some idea of what to expect from Apple's 2025 smartphone lineup. If you plan to skip...
maxresdefault

Apple's AirPods Pro 2 vs. Samsung's Galaxy Buds3 Pro

Saturday July 13, 2024 8:00 am PDT by
Samsung this week introduced its latest earbuds, the Galaxy Buds3 Pro, which look quite a bit like Apple's AirPods Pro 2. Given the similarities, we thought we'd compare Samsung's new earbuds to the AirPods Pro. Subscribe to the MacRumors YouTube channel for more videos. Design wise, you could potentially mistake Samsung's Galaxy Buds3 Pro for the AirPods Pro. The Buds3 Pro have the same...
primeday2020 feature3

The Best Early Prime Day Deals on Apple Products

Saturday July 13, 2024 6:23 am PDT by
Amazon is soon to be back with its annual summertime Prime Day event, lasting for just two days from July 16-17. As it does every year, Prime Day offers shoppers a huge selection of deals across Amazon's storefront, and there are already many deals you can get on sale ahead of the event. Note: MacRumors is an affiliate partner with Amazon. When you click a link and make a purchase, we may...

Top Rated Comments

Michael Scrip Avatar
10 months ago

Face ID is hardly secure. Anyone can take your phone by force, hold you by force and open everything. Ask Hamas.
The same can be said for TouchID and plain ol' passwords, too.

If the bad guy is holding you and your phone hostage... and plans to use violence... you're gonna have a bad time.

Reminds me of this:



Hint: the wrench will win. ;)

But what's more likely to happen is someone from far away trying to get into your accounts remotely. They could be in another state or another country. It happens all the time.

It's those hackers who will be stopped by these new protective measures since they don't have your phone in their hands.

In short... there are more hackers online than people in the real world following me around with a wrench.

:p

Attachment Image
Score: 40 Votes (Like | Disagree)
jchap Avatar
10 months ago

Face ID is hardly secure. Anyone can take your phone by force, hold you by force and open everything. Ask Hamas.
In that scenario, they can also force you at gunpoint to reveal your passwords under threat of death, or force you to unlock your device with your fingerprint. Your comment has nothing to do with the security of Face ID as a general measure under normal circumstances to securely access your device and passwords.
Score: 14 Votes (Like | Disagree)
Polinsky Avatar
10 months ago

I'm about to do the same after spending 10 minutes looking through this damn Amazon app on my iPhone trying to find Passkeys...FFS!
Might I suggest you read the article before threatening to leave Amazon because you can't find a setting.
Score: 13 Votes (Like | Disagree)
sleeptodream Avatar
10 months ago

I'm about to do the same after spending 10 minutes looking through this damn Amazon app on my iPhone trying to find Passkeys...FFS!
from the article it doesn’t sound like it’s been added to the app yet. “in the near future”

edit: others are saying it’s available?
Score: 10 Votes (Like | Disagree)
Japan Ricardo Avatar
10 months ago

Passkeys have been a flop. Far too complicated for regular users, with considerable inconveniences and opportunities for failure.

Rather than the tech companies coming up with a truly open and interoperable standard, passkeys are being used as a way to lock people into specific platform ecosystems.

Despite their flaws, passwords will continue to reign supreme in the long run.
Disagree. They work well for me, and remove a lot of friction, even though I work across platforms (i.e., Windows and iOS).

The Keychain option to populate the 2FA field for sites that don't support Passkey is also very good.
Score: 9 Votes (Like | Disagree)
jaytv111 Avatar
10 months ago

Does using Passkeys vendor lock you into Apple, Microsoft, or Google? Are the passwords stored on the cloud in the big 3's servers?

Can you sign up for an account in 3rd party sites using only passkeys and no password? If so, what happens if Apple or Google bans your iCloud/Gmail account that contains all of those passwords? Are you forever not able to log back into those 3rd party sites?

What happens if you use Passkeys on Apple devices and then switch to Android? How does it work?
Google, Apple, and Microsoft all support passkeys, aka the FIDO standard. The passkeys are not stored in the cloud, they are stored on device. Exception: on iCloud it can store backups of passkeys, with end-to-end encryption enabled no one but you has access to the backups.

A website or app can theoretically let you use a passkey with no password if they chose to allow it. It’s up to each individual website or app to do this, and pretty much none have so far.

Your passkeys are on device, so my guess (I don’t have a way to confirm this without trying to get banned myself) is even without iCloud your passkeys are accessible by you on your device, you just can’t use your backups and you have to migrate your accounts. Not many people get banned from iCloud without straight up fraud happening with their account.

Most websites will be kind enough to let you recover your account through email or text messages even if you lost your passkey. So you will be able to migrate your account off passkeys if you had to.

If you switch to Android, as long as you can sign in with some method or another, you can add another passkey to your account. Android supports passkeys (with certain devices) so you can add them to your account, you can also use a USB key to sign in. You’re not restricted to one device forever on the FIDO standard.
Score: 8 Votes (Like | Disagree)