undefined | Better HN

0 pointsvoxl1y ago0 comments

Until you lose the device. Or you're given security codes and those are again, leakable and guessable. No normal user is going to accept their phone being stolen and losing access to their bank account. It's bitcoin as unregulated fiat levels of wishful thinking

0 comments

freeone30001y ago

Registering your phone as a passkey through Apple or Google will cloud-sync the key. This isn’t great for isolation, but is pretty good for availability.

Using something like KeepassXC puts you in charge of your own backups.

I’m sure we can all find people for whom one or the other would be preferable.

FireBeyond1y ago

> Registering your phone as a passkey through Apple or Google will cloud-sync the key.

Isn't it lovely that the big players can do that...

and when Keepass or others want to do it, they are threatened in no uncertain terms with de-attestation? Members of the FIDO Consortium threatening KeePassXC and other open source tools with blocking for sharing "roaming keys", meanwhile "Oh, Apple wants to share keys via AirDrop? No problem", which is one of the concerns, that it's yet another "push users to Apple and Google's tool of choice".

> https://github.com/keepassxreboot/keepassxc/issues/10407#iss...

"Users should be prevented from copying or sharing a private key".

j / k navigate · click thread line to collapse