2025-04-30T00:00:00Z

---

The transition to passkeys is unfolding in a manner that can be described as gradual at first, followed by an almost sudden acceptance in the tech world. Apple has fully embraced passkeys as part of its security framework, positioning them as a significant advancement in consumer security measures. However, while they offer substantial benefits to individual users, managing passkeys in an enterprise environment has presented its own set of challenges. Fortunately, these issues are beginning to see resolutions.

In the lead-up to World Password Day, a notable development emerged from Dashlane, a leading password management service. The company announced its adoption of confidential computing to enhance the security of synced passkeys stored in the cloud. Rather than relying on traditional methods of storing private keys within client software memory, Dashlane has now opted to secure these keys within AWS Nitro Enclaves. This shift not only fortifies protection but also provides IT administrators with greater control, all while ensuring a seamless experience for end-users.

John Bennett, the Chief Executive Officer of Dashlane, expressed his enthusiasm for this technological advancement, stating, Theres a lot I could say about passkeys as a technology, but I fundamentally believe that they will create a world where account takeovers are almost eliminated. This statement underscores the potential of passkeys to revolutionize online security.

For organizations managing shared accounts or requiring sensitive access, such as cloud storage logins or single-sign-on admin portals, this recent update unlocks a plethora of new possibilities. Administrators can now establish stricter policies regarding credential sharing, define the specific contexts in which credentials can be used, and determine how access can be revoked. This level of granularity enhances security protocols significantly.

What makes Dashlane's move particularly compelling is its commitment to maintaining a zero knowledge security approach. This means that passkeys remain encrypted in the cloud, with only the end-user possessing the ability to decrypt them. The secure enclave takes charge of the authentication handshake, ensuring that the private key stays protected from potential breaches.

Historically, a trade-off has existed between the security provided by hardware keys and the usability of software-based solutions. While hardware keys are renowned for their robustness, they can be cumbersome to manage, especially for global companies with widespread operations. On the other hand, software-based synced passkeys, although user-friendly, have not always matched hardware in terms of security strength. With this update, Dashlane aims to bridge that gap, delivering a solution that meets the convenience expected by users while satisfying the stringent security requirements of IT teams.

As a comparison to other secure devices, the Aqara Smart Lock U50 allows users to enhance their home security systems through integration with Apple Home Key technology. This is indicative of a broader trend towards smart security solutions that prioritize user experience alongside safety.

Passkeys, alongside Single Sign-On (SSO) and Security Information and Event Management (SIEM), are now integral components of Dashlanes focus on confidential computing. For IT departments that primarily work within the Apple ecosystem, this development represents a significant stride towards simplifying credential management without sacrificing user satisfaction. In my view, the ongoing migration to passkeys is one of the most crucial advancements in cybersecurity today, and the sooner organizations worldwide transition to this technology, the better it will be for overall security. It is also noteworthy that major technology vendors are collaborating on open standards in this regard, something that is a rarity in the tech industry.