X is finally going to allow passkeys - but only for some users

Twitter
Twitter combats hate speech bans racism (Image credit: Shutterstock)

X (previously known as Twitter) will now let its users login with a passkey instead of a password - but only on iOS devices.

X announced its intentions to adopt the passwordless technology a while back, and now it has launched the feature for iPhone users. It allows for a quicker way to login, only requiring users to authenticate with whatever they use to lock their device, such as their fingerprint, FaceID, or PIN. 

They are also thought to be safer, since the underlying cryptographic key is generated by the device and not known to anyone, not even the user. This means they are phishing-resistant, so cybercriminals can't try and coax them out of targets using fake emails and social engineering tactics.

Only for iPhones

Passkeys are the brainchild of the FIDO Alliance, who set the technological standards for them. They use the WebAuthn standard, which is a key component of the FIDO2 specifications. Most of big tech are board level members of the alliance, including Apple, Google, and Microsoft.

The private portion of the passkey is stored on device and never shared with X. 

To setup passkeys on X, login to the X app on iPhone and navigate to "Settings and privacy" under "Your account". Then go to "Security and account access" and then "Security". Tap "Passkey" under "Additional password protection" and follow the instructions. You can also delete a passkey from the same menu at any time. 

Although X isn't making passkeys mandatory, it does strongly encourage users to start using them. Currently, users must have an account with X that is secured with a password first, before they can then setup a passkey, although the company says users should "stay tuned" on this front.

Since iOS devices are the only ones capable of logging into X with a passkey (for now), users will have their passkey synced across their Apple devices thanks to Apple's Keychain password manager, which means that multiple iOS devices can be used to login to X with a passkey.

If a user loses all their devices containing their passkey, then a password can still be used to login to X, or users can recover their passkeys from Apple using the iCloud Keychain Escrow.

MORE FROM TECHRADAR PRO

Lewis Maddison
Reviews Writer

Lewis Maddison is a Reviews Writer for TechRadar. He previously worked as a Staff Writer for our business section, TechRadar Pro, where he had experience with productivity-enhancing hardware, ranging from keyboards to standing desks. His area of expertise lies in computer peripherals and audio hardware, having spent over a decade exploring the murky depths of both PC building and music production. He also revels in picking up on the finest details and niggles that ultimately make a big difference to the user experience.

Read more
Person using finger print authentication
Passwords out, passkeys in: The future of secure authentication
Hand holding smartphone and scan fingerprint biometric identity for unlock her mobile phone
Passwordless authentication continues to grow, with biometrics helping push adoption
Smartphone with new logo X twitter app background. Application twitter old blue bird change X black and white new.
Phishing campaign targets prominent X users, accounts at risk
1Password partnership with Oracle Red Bull Racing F1 team
1Password is making it easier to find passwords based on where you are
A digital representation of a lock
Gen Z and Millennial social media accounts are ripe for the taking and this doesn’t surprise me
Young woman working at a coffee shop with a laptop
Too many passwords, not enough brain space? Here’s how password managers can improve your life
Latest in Security
Isometric demonstrating multi-factor authentication using a mobile device.
NCSC gets influencers to sing the praises of 2FA
Sam Altman and OpenAI
OpenAI is upping its bug bounty rewards as security worries rise
A stylized depiction of a padlocked WiFi symbol sitting in the centre of an interlocking vault.
Dangerous new CoffeeLoader malware executes on your GPU to get past security tools
China
Notorious Chinese hackers FamousSparrow allegedly target US financial firms
A digital representation of a lock
NYU website defaced as hacker leaks info on a million students
NHS
NHS IT supplier hit with major fine following ransomware attack
Latest in News
Nintendo Switch 2 Joy-Con up-close from app store
Nintendo's new app gave us another look at the Switch 2, and there's something different with the Joy-Con
cheap Nintendo Switch game deals sales
Nintendo didn't anticipate that Mario Kart 8 Deluxe was 'going to be the juggernaut' for the Nintendo Switch when it was ported to the console, according to former employees
Three angles of the Apple MacBook Air 15-inch M4 laptop above a desk
Apple MacBook Air 15-inch (M4) review roundup – should you buy Apple's new lightweight laptop?
Witchbrook
Witchbrook, the life-sim I've been waiting years for, finally has a release window and it's sooner than you think
Amazon Echo Smart Speaker
Amazon is experimenting with renaming Echo speakers to Alexa speakers, and it's about time
Shigeru Miyamoto presents Nintendo Today app
Nintendo Today smartphone app is out now on iOS and Android devices – and here's what it does