this post was submitted on 14 Oct 2024
500 points (99.6% liked)

Privacy

32103 readers
559 users here now

A place to discuss privacy and freedom in the digital world.

Privacy has become a very important issue in modern society, with companies and governments constantly abusing their power, more and more people are waking up to the importance of digital privacy.

In this community everyone is welcome to post links and discuss topics related to privacy.

Some Rules

Related communities

much thanks to @gary_host_laptop for the logo design :)

founded 5 years ago
MODERATORS
 

Looks like a huge amount of security vendors are working to have a secure and open standard for passkey portability between platforms.

It is always good to see major collaboration in the security space like this considering the harsh opinions that users of some of these vendors have toward many of the others. I just wish apps and sites would stop making me login with username and password if passkeys are meant to replace that lol.

you are viewing a single comment's thread
view the rest of the comments
[–] lud@lemm.ee 1 points 1 month ago* (last edited 1 month ago) (1 children)

I just don't think synced passkeys should be the default for example iOS.

What Microsoft is doing with device-bound passkeys using Windows Hello is imo great.

[–] Petter1@lemm.ee 1 points 1 month ago (1 children)

So microsoft does not require that you backup your passkeys? I thought that was the norm in all OS 😅

I think that passkeys are backed up in cloud by default isn’t that bad for the average person, since they are likely not understanding passkeys (at least right now) and don’t get that they loose access to accounts, if they disable oldscool Passwords only use one passkey on one device for that account.

[–] lud@lemm.ee 1 points 1 month ago (1 children)

You usually don't lose access though. Passkeys rarely replace passwords so you could still use your password or reset it if you don't remember it.

[–] Petter1@lemm.ee 1 points 1 month ago

That is, because we are in transition phase, the goal is that passkey replace the less secure method, else you gain only a very little more security than only Password .