Pulse of Truth

1565 readers

29 users here now

Cyber Security news and links to cyber security stories that could make you go hmmm. The content is exactly as it is consumed through RSS feeds and wont be edited (except for the occasional encoding errors).

This community is automagically fed by an instance of Dittybopper.

founded 2 years ago

MODERATORS

krogoth@infosec.pub

Passkeys are incompatible with open-source software (www.smokingonabike.com)

submitted 2 days ago by lemmydev2@infosec.pub to c/pulse_of_truth@infosec.pub

9 comments fedilink hide all child comments

Comments

you are viewing a single comment's thread
view the rest of the comments

[–] deffard@lemmy.world 2 points 2 days ago (1 children)

The problems highlighted in the first section are optional however. Forcing a particular authentication / device attestation method isn't a passkey problem, it's a provider problem. They are free to do that today with or without passkeys. Equating passkeys = bad because of that feels harsh; it is like any scenario where bad actors behave badly with any given technology.

[–] sem@lemmy.blahaj.zone 0 points 2 days ago

Passkeys give them an excuse to block devices 'for security reasons '