Comment by jesseendahl
1 day ago
You don't need to use anything from Apple/Google/Microsoft. Passkeys are just WebAuthn which is an open standard.
1 day ago
You don't need to use anything from Apple/Google/Microsoft. Passkeys are just WebAuthn which is an open standard.
An open standard that has attestation in it which allows sites to block all open implementations. FIDO Alliance spec writers have even threatened that apps like KeepPassXC could be blocked in the future because they allow you to export your keys.
That standard also allows for importing and exporting passkeys. Apple added that in iOS/macOS/etc 26 to their platforms. https://9to5mac.com/2025/06/13/ios-26-passkeys-password-tran...
The export is end to end encrypted, so you do not have ownership of the data, and the provider (Apple in this case) has full control over who you are allowed to export your keys to. (Notice how there are no options to move your keys to a self-hosted service.)