[december456]

I wont add on to the technical aspect of the discussion, but this whole article is "its easier and its faster and its less expensive for you!!", a data-harvesting tactic having been done for years. Please think, people. I get the security aspect, but this technology gives up an astronomic amount of personal freedom - even if vendor lock-in is somehow eliminated - and biometric data.

[jesseendahl]

You don't know what you're talking about.

Biometric data is only stored on your device. Logging into an app or website with a passkey just uses bog standard asymmetric crypto (public/private keypair). Also a lot of thought was put into the WebAuthn standard (an open standard) to make sure it can't be used as a tracking vector.

[sbuk]

Please think. The biometric data is on-device. This is, in very simplistic terms, public key cryptography where the private key is locked to a device. How that device is authenticated is immaterial to passkey authentication to another service.