Microsoft’s decision to cut autofill capabilities from its Authenticator app has sent ripples through the cybersecurity community, leaving countless users seeking an alternative for two-factor authentication (2FA) management. On the very day Microsoft began phasing out this prominent feature, Proton, the Swiss-based company renowned for its emphasis on privacy, seized the moment to announce Proton Authenticator—a dedicated, cross-platform 2FA solution designed with security and transparency at its core. As the industry pivots from password-based logins toward passkeys and more robust authentication, Proton’s entry offers both a timely alternative and a compelling vision for the future of digital security.
Microsoft Authenticator, long considered a staple for individuals and enterprises seeking a reliable 2FA experience, recently began stripping away one of its most valued features—password autofill. In June, Microsoft blocked the ability to add or import new passwords; by July, autofill functionality was completely removed. As of August, users will no longer be able to access saved passwords within the app. This phased withdrawal is not a sign of abandonment; rather, it signals Microsoft’s strategic shift as the company promotes the adoption of passkeys—cryptographic credentials that are both phishing-resistant and easier to use than traditional passwords.
This change came as a surprise to many, especially given the centrality of password managers and autofill capabilities in the daily workflows of both consumers and IT professionals. It reflects Microsoft’s publicly stated “ultimate goal” of eliminating passwords entirely in favor of the more secure, biometric-friendly, and private key-based passkey model. Passkeys, which employ device-stored private keys and public keys registered with web services and apps, are designed to remain safe from traditional attack vectors such as phishing and large-scale data breaches. Their compatibility with a range of biometrics and PINs furthers the convenience and safety for end users.
What truly distinguishes Proton Authenticator, however, are its foundational principles: open-source development, end-to-end encrypted sync, the absence of advertising or trackers, and full user control via export/import capabilities. Collectively, these features address not only the immediate needs of displaced Authenticator users but also persistent concerns about digital sovereignty, privacy, and data portability.
While Google Authenticator has recently added cloud backup (with some controversy surrounding default security settings and privacy), and Microsoft Authenticator still offers a polished experience for mobile users, neither provides all the features present in Proton Authenticator. Duo remains popular with enterprises, primarily for its integration with business systems, but often places advanced features behind a paywall.
By comparison, Microsoft and Google have made only limited portions of their security stack open, largely restricting transparency to regulatory filings or partner reviews. For users particularly concerned with state surveillance, jurisdictional overreach, or the opaque nature of software supply chains, Proton’s commitment to radical transparency is a notable distinction.
While the app lacks some of the business-management features found in enterprise solutions such as Duo, and doesn’t (at launch) support password autofill or push-based login approvals, Proton has committed to expanding functionalities in line with community needs. Early feedback suggests that users value the absence of feature creep and the focus on core security tasks.
However, the transition is not without its pitfalls. While major web services are gradually rolling out passkey compatibility, adoption across the Internet remains uneven. Users with complex workflows involving legacy systems, multiple browser environments, or shared devices could find the disappearance of autofill disruptive. Furthermore, since passkeys are often tied to physical hardware, device loss or damage poses new recovery challenges (though leading platforms are working to address this through sync and fallback measures).
For segments of the user base that are not yet ready or able to rely solely on passkeys, dedicated 2FA apps like Proton Authenticator fill a vital gap. They allow users to maintain strong, portable defenses even as authentication paradigms evolve.
Compare this to Microsoft Authenticator’s export process, which is mostly manual and can be error-prone, especially for large volumes of logins. Google’s recent update finally introduced export/import, a move welcomed by the security community but still catching up to the expectations set by open-source alternatives.
On Windows enthusiast forums and social channels, displaced Microsoft Authenticator users have taken a particular interest, noting the ease of transition and the reassurance of encrypted sync. However, there’s recognition that switching authentication solutions can be disruptive for teams and organizations with complex access policies or compliance obligations.
As this transition accelerates, trusted, privacy-centric 2FA apps will remain essential—not just as a bridge to the full realization of passkeys, but as a vital defense for edge-case scenarios and less technical users. In this context, Proton Authenticator’s debut is both a timely response to Microsoft’s changes and a marker of growing demand for solutions grounded in transparency, security, and control.
Source: Windows Central As Microsoft drops features from Authenticator — Proton steps up with a new 2FA app
Microsoft Authenticator: Feature Reduction and the Push Toward Passkeys
Microsoft Authenticator, long considered a staple for individuals and enterprises seeking a reliable 2FA experience, recently began stripping away one of its most valued features—password autofill. In June, Microsoft blocked the ability to add or import new passwords; by July, autofill functionality was completely removed. As of August, users will no longer be able to access saved passwords within the app. This phased withdrawal is not a sign of abandonment; rather, it signals Microsoft’s strategic shift as the company promotes the adoption of passkeys—cryptographic credentials that are both phishing-resistant and easier to use than traditional passwords.This change came as a surprise to many, especially given the centrality of password managers and autofill capabilities in the daily workflows of both consumers and IT professionals. It reflects Microsoft’s publicly stated “ultimate goal” of eliminating passwords entirely in favor of the more secure, biometric-friendly, and private key-based passkey model. Passkeys, which employ device-stored private keys and public keys registered with web services and apps, are designed to remain safe from traditional attack vectors such as phishing and large-scale data breaches. Their compatibility with a range of biometrics and PINs furthers the convenience and safety for end users.
The Emergence of Proton Authenticator
In the wake of Microsoft Authenticator’s transformation, Proton entered the discussion with Proton Authenticator. Unlike Proton Pass—Proton’s established password manager—Proton Authenticator is a dedicated 2FA app supporting Windows, macOS, Linux, iOS, and Android. This cross-platform accessibility, coupled with an unambiguous promise of perpetual free access for both desktop and mobile, has immediately set Proton’s entry apart from many other players.What truly distinguishes Proton Authenticator, however, are its foundational principles: open-source development, end-to-end encrypted sync, the absence of advertising or trackers, and full user control via export/import capabilities. Collectively, these features address not only the immediate needs of displaced Authenticator users but also persistent concerns about digital sovereignty, privacy, and data portability.
Comparing 2FA Solutions: Proton vs Microsoft, Google, and Duo
The 2FA landscape is littered with high-profile options including Google Authenticator, Microsoft Authenticator, and Duo, each with its own strengths and weaknesses. However, Proton’s combination of openness, privacy, and usability is comparatively rare:| Feature | Proton Authenticator | Microsoft Authenticator | Google Authenticator | Duo |
|---|---|---|---|---|
| Open-source | Yes | No | No | No |
| Encrypted sync | Yes | Partial (for MS ecosystem) | Recently enabled, not default | Yes (enterprise) |
| Export/Import | Yes | Export only (manual) | Yes (recent update) | No |
| Ads/Tracking | No | No | No | No (enterprise focus) |
| Cross-platform (desktop) | Yes | No (mobile only) | No (mobile only) | Partial (web for enterprise) |
| Free (all features) | Yes | Yes | Yes | No (enterprise paywall) |
Transparency and Open Source: Why It Matters
One of Proton Authenticator’s defining features is its open-source nature. All source code is publicly available for scrutiny and independent auditing. In an era of mounting skepticism about closed-source, proprietary security tools—especially those handling highly sensitive information—this approach is more than just a marketing novelty. It allows the cybersecurity community to verify the absence of backdoors and ensures ongoing community-driven improvement and review.By comparison, Microsoft and Google have made only limited portions of their security stack open, largely restricting transparency to regulatory filings or partner reviews. For users particularly concerned with state surveillance, jurisdictional overreach, or the opaque nature of software supply chains, Proton’s commitment to radical transparency is a notable distinction.
Privacy by Design: No Ads, No Trackers, No Compromises
Proton has made privacy a central pillar of all its offerings. Proton Mail, Proton VPN, and Proton Drive are all well-regarded for their strong privacy guarantees and for residing under Swiss data protection laws. Proton Authenticator inherits this design philosophy, promising:- No advertisements, ensuring user attention isn’t monetized or exploited.
- No tracking, meaning app usage data isn’t sold or used for profiling.
- Encrypted synchronization, so that even Proton itself cannot access user 2FA data.
User Experience and Features
From a usability standpoint, Proton Authenticator offers a streamlined onboarding process and intuitive navigation. Its support for importing and exporting 2FA credentials reduces the risk of lockouts during device transitions or migrations from other apps. The interface is clean, minimal, and uncluttered by extraneous prompts or integrations.While the app lacks some of the business-management features found in enterprise solutions such as Duo, and doesn’t (at launch) support password autofill or push-based login approvals, Proton has committed to expanding functionalities in line with community needs. Early feedback suggests that users value the absence of feature creep and the focus on core security tasks.
Security Implications of Microsoft’s Autofill Sunset
Microsoft’s removal of autofill from Authenticator is a calculated risk—a bet that users will lean into passkeys and adjacent technologies rather than seeking third-party alternatives for password management. Proponents of passkeys argue that this shift will eliminate whole categories of risk tied to password reuse, social engineering, and phishing—indeed, passkeys promise a future in which credentials are tied to user devices and are never exposed to prying eyes or compromised websites.However, the transition is not without its pitfalls. While major web services are gradually rolling out passkey compatibility, adoption across the Internet remains uneven. Users with complex workflows involving legacy systems, multiple browser environments, or shared devices could find the disappearance of autofill disruptive. Furthermore, since passkeys are often tied to physical hardware, device loss or damage poses new recovery challenges (though leading platforms are working to address this through sync and fallback measures).
For segments of the user base that are not yet ready or able to rely solely on passkeys, dedicated 2FA apps like Proton Authenticator fill a vital gap. They allow users to maintain strong, portable defenses even as authentication paradigms evolve.
Portability, Data Control, and the Import/Export Advantage
A critical—and sometimes overlooked—feature in any authentication app is data portability. When users are locked into a platform with no means of extracting or migrating their credentials, they risk losing access entirely if a device is lost, the account is compromised, or the provider changes its terms. Proton Authenticator’s explicit support for importing and exporting 2FA data gives users a safety net, ensuring they can always retain sovereignty over their digital identity.Compare this to Microsoft Authenticator’s export process, which is mostly manual and can be error-prone, especially for large volumes of logins. Google’s recent update finally introduced export/import, a move welcomed by the security community but still catching up to the expectations set by open-source alternatives.
Risks and Limitations
No solution is perfect. For all of Proton Authenticator’s strengths—transparency, privacy, user control—there are areas where users should proceed with awareness:- Proton, as a relatively new entrant in the authentication app market, may face unknown scaling or edge-case integration issues compared to longer-established alternatives.
- At launch, there is no indication of push-approved logins, which remain a valuable convenience for enterprise workflows.
- Since Proton Authenticator is a standalone app and not bundled with password management, users must still coordinate credentials between platforms (unless they opt for Proton Pass).
- The effectiveness of encrypted sync ultimately depends on user practices (e.g., strong master passwords) and Proton’s ongoing security rigor.
Community Reception and Early Reviews
Initial reactions from the IT and cybersecurity community have been largely positive. Enthusiasts praise Proton’s decisiveness and clarity on privacy matters, as well as its commitment to keeping both desktop and mobile versions free. Security experts have lauded the open-source release, though many counsel due diligence and careful backup of 2FA secrets, given the catastrophic consequences of account lockouts.On Windows enthusiast forums and social channels, displaced Microsoft Authenticator users have taken a particular interest, noting the ease of transition and the reassurance of encrypted sync. However, there’s recognition that switching authentication solutions can be disruptive for teams and organizations with complex access policies or compliance obligations.
Looking Ahead: The Future of Authentication
Microsoft’s retreat from password autofill to promote passkeys is emblematic of a broader shift across the industry. The FIDO Alliance, Apple, Google, and countless others are converging on passwordless authentication as the de facto future, one less vulnerable to the social engineering and credential stuffing that plague the modern Internet.As this transition accelerates, trusted, privacy-centric 2FA apps will remain essential—not just as a bridge to the full realization of passkeys, but as a vital defense for edge-case scenarios and less technical users. In this context, Proton Authenticator’s debut is both a timely response to Microsoft’s changes and a marker of growing demand for solutions grounded in transparency, security, and control.
Conclusion
Microsoft’s pivot away from password-centric workflows marks the end of an era—and the beginning of a new one defined by device-bound keys and biometric unlocks. For those not yet ready or able to join the passkey revolution, Proton Authenticator delivers a privacy-first, open-source alternative with a robust feature set and a clear commitment to keeping users in control. While no single tool will suit all users or scenarios, the arrival of Proton Authenticator offers displaced users and privacy enthusiasts an exceptional blend of transparency, portability, and peace of mind, at a moment when the guardianship of digital identity has never been more consequential. As passkeys inch toward ubiquity, the market for honest, user-driven 2FA solutions remains not just relevant—but indispensable—for the foreseeable future.Source: Windows Central As Microsoft drops features from Authenticator — Proton steps up with a new 2FA app
