undefined | Better HN

0 pointsleokennis3y ago0 comments

Exactly. Planning for emergencies is a big factor in password/secret management.

Currently, managing and using close to a 1,000 passwords, all around 35 characters and completely random, is an absolute breeze using 1Password (and likely any password manager of choice) and my data is securely stored in a cloud I can access from any device (and from my neighbor's laptop if disaster should strike).

No way that I am handing over this functionality to a bunch of private keys that I can only access when logged in using a device from one specific vendor.

The security benefits are vastly less than the loss in portability/emergency use.

So the idea of passkeys is fantastic, but as long as I cannot store them in a central platform agnostic place, it's passwords for me.

0 comments

aborsy3y ago

Can’t you use both a passkey and regular password?

Otherwise if I login by passkey to a website on an Apple device, how do I login outside Apple’s walled garden?

leokennisOP3y ago

No. That would be like having a steel door in your house, and a cardboard one next to it.

I believe the login flow on another device (let’s say a Windows laptop) is that you scan some QR code on the laptop’s screen from your iPhone. Then the iPhone communicates with the site and validates the passkey. And if that is all OK the site on the laptop will proceed to log you in.

j / k navigate · click thread line to collapse