177

Passwords have problems, but passkeys have more (world.hey.com)

submitted 16 hours ago by exu@feditown.com to c/technology@lemmy.world

133 comments fedilink hide all child comments

(page 3) 33 comments

sorted by: hot top controversial new old

[-] infeeeee@lemm.ee 26 points 15 hours ago

There was a related news recently, that bitwarden and other pw managers will be able to sync passkeys between devices. Won't that solve these issues?

[-] hummingbird@lemmy.world 14 points 15 hours ago* (last edited 15 hours ago)

Not in all situations. And in a way a user will not be aware of. The service or website can define what type of passkey is allowed (based in attestation). You may not be able to acutally use your "movable" keys because someone else decided so. You will not notice this until you actually face such a service. And when that happens, you can be sure that the average user will not understand what ia going on. Not all passkeys are equal, but that fact is hidden from the user.

[-] rolling_resistance@lemmy.world 1 points 10 hours ago

It does*.

However when I'm trying to login with a passkey in my mobile browser, Bitwarden prompt isn't showing up. I don't know what's wrong.

[-] snowsuit2654@lemmy.blahaj.zone 1 points 8 hours ago

I've found on my android phone that the bitwarden prompt comes up more reliably if I tap on the password field instead of the username field.

[-] rolling_resistance@lemmy.world 1 points 8 hours ago

This might be true, but I'm talking about passkeys, that never work :(

[-] 4am@lemm.ee 1 points 10 hours ago

That’s weird, it works for me. Is there something you need to click on the mobile site?

[-] rolling_resistance@lemmy.world 1 points 9 hours ago

What's your browser-Bitwarden setup?

The same flow works for me on desktop (firefox+bw plugin).

load more comments (2 replies)

[-] exu@feditown.com 3 points 15 hours ago

I remain hopeful. Initially, when Keypass wanted to include a simple export option there was talk of banning them from using Passkeys.

load more comments (8 replies)

[-] PushButton@lemmy.world 7 points 12 hours ago

I always thought of passkeys as a convenient way to authenticate.

I am password-less on multiple services.

I have an authentication app on my phone that authenticate me when I am away of my computers. I have passkeys on my personal computer and another set of passkeys on my work laptop.

If I have to authenticate from your computer I simply use my auth app, click on "it's a public computer" and I am good to go.

The dude discovered a butter knife and he tries to replace his spoon with it just to realize it doesn't work well for eating a soup.

load more comments (4 replies)

[-] ParadoxSeahorse@lemmy.world 4 points 13 hours ago

Why not just passkeys with a “magic link” fallback though?

This is the same as forgotten password so ytf not

[-] seang96@spgrn.com 2 points 11 hours ago

With a password manager I'd argue its better but supports still not all there yet. I am waiting on bitwarden right now to support mull, basically its blacklisted, but it was added in the last 2 weeks so now its a waiting game.

[-] umbrella@lemmy.ml -2 points 13 hours ago* (last edited 12 hours ago)

thats close to what i have been fucking saying and getting hate for.

so im glad someone has written it on a damn blog to legitimize it?

load more comments

this post was submitted on 16 Oct 2024

177 points (86.4% liked)

Technology

58697 readers

4036 users here now

This is a most excellent place for technology news and articles.

Our Rules

Follow the lemmy.world rules.
Only tech related content.
Be excellent to each another!
Mod approved content bots can post up to 10 articles per day.
Threads asking for personal tech support may be deleted.
Politics threads may be removed.
No memes allowed as posts, OK to post as comments.
Only approved bots from the list below, to ask if your bot can be added please contact us.
Check for duplicates before posting, duplicates may be removed

Approved Bots

founded 1 year ago

MODERATORS