Dashlane adds support for FIDO2 security keys, making vault access truly phishing resistant

Phishing isn’t going away, especially in the enterprise. GenAI has made it easier to spin up realistic scams with voice matching, etc. MFA codes aren’t perfect if you end up handing them over. Coinbase reported a massive loss of customer data, and that has created a whole host of problems. That’s why what Dashlane just announced is very timely, because it takes phishing off the table completely. Dashlane’s latest update brings us a big step closer to a world where phishing just doesn’t work. Dashlane is now letting customers unlock their vaults with FIDO2 security keys like a YubiKey or Google Titan Key instead of a “master password”.

Why it matters

If you’re using Dashlane on an iPhone, Mac, or iPad, you can now get into your vault without a password or a code that could be phished. There is no more relying on MFA prompts that can be tricked with a fake site or a well-timed text or using a super complex vault password. We’ve all seen smart people fall for phishing attacks. Even with MFA in place, it can take just one wrong tap to lose access to key accounts.

Dashlane is solving that with WebAuthn PRF, a feature that ties your vault access to the physical key you hold. Nothing is stored in the cloud or sent across the network. So even if someone builds a perfect fake login page, your key will not work there. If your browser or device does not support PRF, Dashlane returns to a passwordless setup that still protects your data.

I would really love to see Apple expand macOS support for something like this. Even with Touch ID, I am entering my unlock password at least once a day. If biometrics are more secure, it should be the default and always available.

Strong security only matters if people can actually use it. Dashlane is adding practical features like support for multiple keys so you are not stuck if you lose one, PIN-based verification to protect against someone else using your key, and passwordless setup for new devices.

Available now in early access

Personal plan users can sign up to try FIDO2 security key access starting today, with broader availability coming later this year for business customers. Dashlane was early to the passkey market and continues to push the envelope on what passwordless login should look like. With FIDO2 keys now supported as a primary authentication factor, they’re setting a new bar for what “secure” really means. I am a big fan of moving to passkeys, FIDO2, and biometrics for everything passwords.