Skip to main content

Synced or device-bound?

Bravura Safe uses synced passkeys. Here are the differences between synced and device-bound:

Synced passkeys

  • Can be used across multiple devices:

    • If you often switch between devices (e.g., smartphone, laptop, tablet) and require uninterrupted access to online services, synced passkeys are more convenient.

  • Offer seamless handling of device turnover:

    • If you lose or replace a device, synced passkeys mean you will never be locked out of your accounts.

  • Include backup and recovery:

    • Synced passkeys inherently offer a backup mechanism, enabling you to quickly resume access to services if your main device fails.

Device-bound passkeys

  • Can only be used on a single device:

    • Access to protected services is available only through one physical device (e.g., a hardware security key, smart card, etc.) that can easily be lost or misplaced, along with the passkey bound to that device.

  • Device turnover means no access:

    • If you lose a device-bound passkey, you are very likely out of luck and will be unable to access related services.

  • Often no backup or recovery:

    • The aim of a device-bound passkey is to ensure that the passkey cannot be used on any other device; as a result, there is typically no backup.

    • It is very important to weigh the ramifications of losing a device-bound passkey and subsequently losing access to business-critical services.

Summary

  • Synced passkeys from a modern, secure, and encrypted authenticator application offer convenient use and ease of recovery.

  • Device-bound passkeys limit access to a single physical device and pose challenges if that device is lost or compromised without a proper backup mechanism in place.

In this section: