I’m not sure if you have been around normal people but the unnecessary risk is having them use a password in the first place. Normal people do not use password managers, despite both mobile operating systems and effectively every single browser bundling one.

So now we have Apple Google and Microsoft getting a standard together that is actually secure in 2025 and your response is that sometime in the future a computer that our best engineers and scientists still haven’t been able to even prove may even be feasible might be able to reverse a public key.

I also have a strong suspicion that the people that goes through the effort of even implementing Passkeys and those that care about security are a mostly overlapping set, so the likelihood of those public keys leaking in the first place is significantly lower the Bob’s hardware leaking my old mans one password he uses for everything.

The security improvement for 99.99% of the population from using passkeys just far outweighs your hypothetical future that will likely never happen.

I predict we will get AGI before a quantum computer that can reverse a public key, and we will have quantum safe public keys before that.