And this is the problem right here

> The Google Password Manager on Android is ready to sync all your passkeys to the cloud, and if you can meet all the hardware requirements and find a supporting service, you can now sign-in to something with a passkey. [added emphasis]

Passwords are familiar, easy to use, and are implemented everywhere. Other schemes, no matter how good they are, don't tick all of those boxes and won't gain wide adoption.

Hell, I can't use standard based TOTP/HOTP tokens on any of my financial sites. If financial sites support it, you must use their app.

I would love to see standards based 2FA mandated for financial and healthcare sites.