Looks like a huge amount of security vendors are working to have a secure and open standard for passkey portability between platforms.

It is always good to see major collaboration in the security space like this considering the harsh opinions that users of some of these vendors have toward many of the others. I just wish apps and sites would stop making me login with username and password if passkeys are meant to replace that lol.

  • AA5B@lemmy.world
    link
    fedilink
    arrow-up
    3
    ·
    2 months ago

    That’s July question: the article even points that out. If previously the private key was in hardware, never exposed, but now it has to be available to software. Does it open any potential attacks?

    Even if it is less secure, this is probably a good thing to prevent vendor lock-in. I know that’s one reason I rarely use passkeys

    • Petter1@lemm.ee
      link
      fedilink
      arrow-up
      2
      ·
      2 months ago

      Yea, I strictly did not set up any passkeys until I got strongbox pro, to store it outside of apple walled garden. To get 2FA secrets was hard enough (had long time no macOS device, only iOS)

    • ShortN0te@lemmy.ml
      link
      fedilink
      arrow-up
      1
      ·
      2 months ago

      That was a rhetorical question towards the commenter since the discussion point was not understood.