this post was submitted on 16 Oct 2024
323 points (100.0% liked)

Technology

69804 readers
3002 users here now

This is a most excellent place for technology news and articles.

Our Rules

  1. Follow the lemmy.world rules.
  2. Only tech related news or articles.
  3. Be excellent to each other!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, this includes using AI responses and summaries. To ask if your bot can be added please contact a mod.
  9. Check for duplicates before posting, duplicates may be removed
  10. Accounts 7 days and younger will have their posts automatically removed.

Approved Bots

founded 2 years ago
MODERATORS
[email protected]
[email protected]
[email protected]
[email protected]
[email protected]
[email protected]
323
Passwords have problems, but passkeys have more (world.hey.com)
submitted 6 months ago by [email protected] to c/[email protected]
186 comments fedilink hide all child comments
(page 3) 50 comments
sorted by: hot top controversial new old
[–] [email protected] 3 points 6 months ago (1 children)

Passkeys aren't a full replacement in my opinion, which is what DHH gets wrong. It's a secure, user-friendly alternative to password+MFA. If the device doesn't have a passkey set up you revert to password+MFA.

load more comments (1 replies)
[–] [email protected] 3 points 6 months ago

Fuck DHH

[–] [email protected] 2 points 6 months ago

With a password manager I'd argue its better but supports still not all there yet. I am waiting on bitwarden right now to support mull, basically its blacklisted, but it was added in the last 2 weeks so now its a waiting game.

[–] [email protected] 2 points 6 months ago

I'm sorry but I seriously do not see any benefits to using passkeys.

I use 24 character passwords in Bitwarden with 2fa on all accounts, how is a passkey better than that?

[–] [email protected] 2 points 6 months ago* (last edited 6 months ago) (5 children)

For me, I'd prefer that everyone just adds biometric authentication techniques. A couple websites do this already and it's great. Many devices have biometrics built in already and if this was widespread I'd certainly have no problem buying a fingerprint reader for my desktop computer.

[–] [email protected] 2 points 6 months ago* (last edited 6 months ago) (1 children)

You do realize that your biometric authentication techniques don't actually send your biometrics (e.g. fingerprint/face) to the website you're using and that you are actually just registering your device and storing a private key? Your biometrics are used to authenticate with your local device and unlock a locally-stored private key.

That private key is essentially what passkeys are doing, storing a private key either in a password manager or locally on device backed by some security hardware (e.g. TPM, secure enclave, hardware-backed keystore).

load more comments (1 replies)
load more comments (4 replies)
load more comments
view more: ‹ prev next ›