2026-01-11 10:23:32

Recently, a major wallet platform added passwords as a verification option. Now users have more methods to choose from—biometric passkeys, authenticators, traditional passwords, each with their own considerations.

Let's start with biometric passkeys (Passkeys). Security-wise, there's no doubt—FaceID, fingerprints, Windows PINs, these biometric methods are indeed robust. But there's an obvious issue—cross-device compatibility is a real hassle. Especially when using web browsers, they can't detect other local verification methods, and the option to scan a QR code with your phone simply doesn't pop up. Instead, you're often prompted with "Insert USB security key," which can be a bit frustrating.

Then there's the old-fashioned password verification. Simple, but easy to forget, and if set too simply, it becomes a security risk. Who still dares to use 123456 these days?

Authenticator apps are a solution developed by Google, using a pair of keys—one on the user side, one on the server side. During verification, a locally generated offline dynamic code is compared with the server. In terms of security, it's quite reliable.

So, which do you prefer? Each has its pros and cons; the key is whether it feels convenient and easy to use for you.

View Original

This page may contain third-party content, which is provided for information purposes only (not representations/warranties) and should not be considered as an endorsement of its views by Gate, nor as financial or professional advice. See Disclaimer for details.

9 Likes

Reward
9
9
Repost
Share

Comment

0/400

StakeTillRetire

· 01-14 07:16

Passkey across devices, I've also stepped on this pit, it's really incredible. When the web version can't pop up that QR code option, I just can't believe it. This thing's biometric recognition is great, but it's not usable in all scenarios. In critical moments, you still have to fall back to a password. TOTP is still better; generating dynamic codes offline, no worries about device compatibility issues, just remember to back up the seed phrase. Passwords should have been phased out long ago, but the reality is most platforms haven't kept up, and we still have to deal with so many verification methods. I'm just waiting for industry-wide standardization, so we users won't have to deal with so many tricks.

View OriginalReply0

GasFeeCrier

· 01-14 03:25

Cross-device passkey pitfalls I’ve stepped into before, really annoying, the authenticator is still the most reliable Passkey seems great but actually using it is super frustrating, still better to go back to the authenticator Old passwords should have been phased out long ago, no one uses such a crappy solution anymore Honestly, Google Authenticator is still the most hassle-free, don’t overthink it Cross-device nightmare, brother, passkey is far from as perfect as it's hyped to be now

View OriginalReply0

GraphGuru

· 01-14 03:06

Passkey across devices is such a hassle, I’ve given up on it directly. Authenticators are okay, but when changing phones, you need to back up the private key, which is scary. Passwords are more worry-free; just write them down in a notebook and be done. That USB key is really speechless, it’s just a damn webpage. I used Google Authenticator for two months, but later I switched back to a password manager, too lazy to bother. Honestly, security and user experience are always at odds; there’s no perfect solution. Anyway, I currently use Bitwarden to store passwords, and it’s awesome. Cross-device syncing is too troublesome; better to have one solution that dominates everything.

View OriginalReply0

OnchainDetective

· 01-12 13:04

Wait, I need to analyze the logic behind this. The wallet suddenly supporting three verification methods simultaneously clearly indicates that user behavior data is being collected. According to on-chain data, platforms like these often have abnormal address activity before an upgrade. Given how obvious the cross-device issue with passkeys is, why are they still pushing it? I think this is simultaneously profiling addresses while filtering for user stickiness.

View OriginalReply0

AirdropHunter

· 01-11 10:40

My comments are as follows: 1. The passkey cross-device issue is really terrible; every time I verify on a webpage, I want to smash my phone. 2. Honestly, the authenticator is the most comfortable; biometric verification is too unreliable. 3. Passwords should have been phased out long ago; using them now is just asking for trouble. 4. Based on my experience, I’ve tried all three, and the authenticator is the most stable. 5. Biometric recognition sounds advanced, but in practice, it’s full of pitfalls. I’ve given up. 6. The USB key issue that guy mentioned, I’ve also encountered it. Ridiculous. 7. When will the cross-device problem of passkey be solved? 8. I only use the authenticator—simple, straightforward, and secure. No fuss. 9. Password verification is almost useless; it’s tasteless to use but a pity to discard. 10. The concept of biometric passports is good, but the experience is too poor.

View OriginalReply0

NewDAOdreamer

· 01-11 10:38

I directly use the validator, and the passkey cross-device setup is really annoying. Sometimes it's USB, sometimes it's scanning a QR code.

View OriginalReply0

BlockchainBard

· 01-11 10:36

That passkey cross-device system is really annoying. It's better to just use an authenticator for a smoother experience.

View OriginalReply0

GateUser-a180694b

· 01-11 10:35

Let's stick with the verifier. The cross-device issues with passkey are really annoying, and it's often a hassle to deal with USB keys.

View OriginalReply0

MetaLord420

· 01-11 10:34

Passkey cross-device setup is really a hassle. The web version just disconnects directly, and in the end, they still ask me to plug in a USB key. I just gave up. Authenticator apps are still the most reliable, even if they involve multiple steps, at least they are dependable. Passwords, forget it. Not remembering them is insecure anyway.

View OriginalReply0