Replying to Avatar Pablo Xannybar

Just reusing the same key instead?

Replacing one single point with another really.
de
nobody 2y ago

The attack vector is almost always a password that's too simple, or reused. Passkeys are pub/priv based and not reused. It's a challenge and response auth versus basic auth. The PIN makes it something you have and something you know so adds another layer of security.

I hate Google too but passkeys are sound.

Reply to this note

Please Login to reply.

Discussion

Avatar
Pablo Xannybar 2y ago

They're sound as 2FA but I think for replacing passwords it's just replacing one problem with another.

Explained further below:

nostr:nevent1qqsryknkucvjdvnydqyfmnhnzvnprp4ywgsfryve5f4qccsmk6ycl2gpz9mhxue69uhkummnw3ezumr49e4k2q3q7rlc0emedw5xljztfqrmykjaacsx6ujvdas64zznjadrnhhwlavqxpqqqqqqzp7puhp