Security Keys for Your Apple ID: The Basics and What You Need

Apple’s commitment to security continues from the first moment they proposed to focus on the user in their ecosystem. Since then, whenever a new big update is released, they save space to dedicate to the news related to improving user privacy and security. A few weeks ago, the security keys for our Apple ID, a physical device that allows us to add an extra layer of security to our Apple account. If you want to know how these security keys work, what benefits they give you, and what you need to start using them, keep reading.

A Look at FIDO Alliance Security Keys

As we commented, security keys It is a small physical external device that looks like a small USB flash drive. This device can be used for many functions and one of them is the verification when signing in with our Apple ID using two-factor authentication.

To make the compression easier, let’s say that when we use two-factor authentication to log in somewhere, we do it in two steps. The first factor is access with our identifiers, but then we need external confirmation through a second factor. Normally it is usually a code that we receive in the form of an SMS on our phone or confirm the session from a device with the account and started.

There is an evolution of this second factor known as U2F, 2nd universal factor, which improves the security and reliability of double authentication. For that additional hardware is required to be able to access an account, this hardware being the second factor to verify our account. And this material that we are talking about is the security keys.

iOS 16.3 and security keys

iOS 16.3 introduces the compatibility of security keys to access our Apple ID when we start it somewhere we are not connected. With these keys, what Apple wants to do is prevent impersonation and social engineering scams.

With these security keys two-factor authentication improves slightly. Remember that the first data is always the password of our Apple ID but the second factor is now the security key and not the old code that was sent to another device in which our session has already started. With the simple fact of connecting the key, we will be able to access by skipping this second step, since the second step is intrinsically the key itself.

What do we need to start using this enhanced two-step verification?

Apple clearly defines this on its support website. Must have of a series of requirements before you start using security keys indiscriminately. Here are the requirements:

• At least two FIDO®-certified security keys that work with the Apple devices you use regularly.
• iOS 16.3, iPadOS 16.3, or macOS Ventura 13.2 or later on all devices where you’re signed in with your Apple ID.
• Enable two-step authentication for your Apple ID.
• A modern web browser.
• To sign in to Apple Watch, Apple TV, or HomePod after setting up security keys, you need an iPhone or iPad with a software version that supports security keys.

In short, we need at least two security keys, all devices updated to iOS 16.3, and a modern web browser.

The limits of the security key for our Apple ID

At first glance, this system seems to have a lot of good things, especially not depending on a six-digit code every time we want to log into our Apple ID account. However, like all tools, they have limits that can make the difference whether or not to use the feature.

Apple has highlighted the following on its website: