memes

12126 readers

2213 users here now

Community rules

1. Be civil

No trolling, bigotry or other insulting / annoying behaviour

2. No politics

This is non-politics community. For political memes please go to !politicalmemes@lemmy.world

3. No recent reposts

Check for reposts when posting a meme, you can only repost after 1 month

4. No bots

No bots without the express approval of the mods or the admins

5. No Spam/Ads

No advertisements or spam. This is an instance rule and the only way to live.

A collection of some classic Lemmy memes for your enjoyment

Sister communities

!tenforward@lemmy.world : Star Trek memes, chat and shitposts
!lemmyshitpost@lemmy.world : Lemmy Shitposts, anything and everything goes.
!linuxmemes@lemmy.world : Linux themed memes
!comicstrips@lemmy.world : for those who love comic stories.

founded 2 years ago

MODERATORS

Tenthrow@lemmy.world

The_Picard_Maneuver@lemmy.world

The_Picard_Maneuver@startrek.website

408

Take your passkey and shove it where the sun don't shine (lemmy.world)

submitted 1 day ago by cm0002@lemmy.world to c/memes@lemmy.world

109 comments fedilink hide all child comments

you are viewing a single comment's thread
view the rest of the comments

[–] tabularasa@lemmy.ca 46 points 18 hours ago (13 children)

The amount of people in this thread that don't understand passkeys surprises me. This is Lemmy. Aren't we the technical Linux nerds of the Internet?

[–] Maggoty@lemmy.world 8 points 13 hours ago (9 children)

2FA is just dead simple. I contact you, you contact me, handshake achieved. If you call me out of the blue I raise the alarm. If you get a login attempt with a failed handshake you raise the alarm.

Putting it all behind a pop up screen just isn't trustworthy to the human brain.

[–] bearboiblake@pawb.social 4 points 5 hours ago (2 children)

TOTP 2FA is less secure than passkeys. 2FA TOTP keys can be phished. Passkey authentication cannot be phished. This is a security improvement which can make people completely immune to phishing attacks. That's huge. And it doesn't have any privacy risks, no loss of anonymity. It's an open standard.

This is, objectively, a rare example of new technology which will make the world better and safer for us.

[–] tabularasa@lemmy.ca 2 points 2 hours ago

Yes, this point exactly, thank you for explaining this.

[–] Tiger@sh.itjust.works 1 points 2 hours ago (1 children)

But I also worry about new areas of weakness with passkeys - anyone accessing the device with the passkey on it, or hacked that device, gets access automatically to the accounts. Also if logins are too fluid I worry that anything out of the ordinary during sign ins won’t be noticed.

[–] bearboiblake@pawb.social 2 points 1 hour ago* (last edited 1 hour ago)

yeah that's totally true, but usually modern devices ensure that the passkeys are protected with a PIN or some biometric security, so I think it's at least as strong as having a password manager on your device that can be unlocked with a PIN.

not really sure what you mean about "out of the ordinary" logins - it sounds like you're thinking about phishing risks? but remember - passkeys cannot be phished. they verify the identity of both sides of the authentication token exchange - the server verifies you, and you verify the server. If you only use passkey authentication, you are safe from being phished. the most secure system would be one entirely without passwords/oath totp

load more comments (6 replies)

load more comments (9 replies)