@canard164 @nsa perhaps, but I still think the point stands. It is a negative for passkeys that it makes vendor lock-in much easier than before. And it will happen without users understanding that it is happening.
Password managers are used by a few people, and many of them are fairly technical.
Passkeys, if they work out, will be used by everyone, and most without them realizing it. All they do is enable "biometric login", which is the term used by most websites instead of passkeys.
I don't pretend to have a solution to this problem, and making one that doesn't also open the door for phishing may be hard. The whole point of passkeys is to make it impossible for someone to phish the private key after all.
=> More informations about this toot | View the thread | More toots from gigantos@social.linux.pizza
=> View canard164@mastodon.social profile | View nsa@hachyderm.io profile
text/geminiThis content has been proxied by September (3851b).