• Illogicalbit@lemmy.world
    link
    fedilink
    English
    arrow-up
    18
    ·
    8 months ago

    A good read and a validation that it’s frequently a good idea to approach new security technologies with caution. The new hotness isn’t always the best thing.

    • sugar_in_your_tea@sh.itjust.works
      link
      fedilink
      English
      arrow-up
      18
      arrow-down
      1
      ·
      8 months ago

      Honestly, when I saw “passkeys,” my first thought was “vendor lockin.” Google and GitHub did it with SSO using OAuth, and they’re doing it again with passkeys.

      Honestly, this is a “surprised Pikachu” moment for me. The closer you get to convenience, the more the big players will want to lock you in:

      • biometrics
      • voice recognition
      • passkeys

      Passwords are hard to lock down because it’s easy to switch to something else.

  • gradyp@awful.systems
    link
    fedilink
    English
    arrow-up
    14
    ·
    8 months ago

    I love the promise of passkeys but it’s been painfully obvious the promises are just wallpaper over the actual intent which is vendor lockin.