If you like password managers, you'll love passkeys!

Passkeys is an interface between your password manager and a website without all the fluff with filling or copy-pasting passwords.

▲ valenterry 9 days ago | parent | next [-]

No need to write like that. I know, understand and use passkeys for quite a while now.

I don't love them. I don't love passwords either.

But while I don't fear passwords, I fear passkeys. The reason is that it makes the tech even more intransparent. My password manager stops working, completely dies or I can't use it anymore for other reason? No problem, I can fallback to a paper list of passwords if I really have to. This transparency and compatibility is more important than people think.

Passkeys lack that. They can be an interface like you described, but only if everyone plays along and they can be exported. But since there is no guarantee (and in practice, they often cannot be exported either) they are not a replacement for passwords. They are a good addition though.

Unfortunately, many people don't understand that and push for passwords to begone.

▲ ericjmorey 9 days ago | parent | next [-]

I have yet to see passkeys used as a sole method of logging in. There's always a traditional username and password setup first. There's always a recovery code set up for the passkey. I have yet to see passkeys offered as the only means of MFA. Which means that your backup methods still work. You can use them for recovering your access. I see passkeys as an optional convenience. It works well for me by that measure.

▲

valenterry 9 days ago | parent [-]

I agree, but there is no guarantee that it will stay like that. In fact, there are many people who argue to completely get rid of passwords.

▲

palata 9 days ago | parent [-]

This would be an argument to support keeping the passwords, instead of pushing for not adding passkeys in the first place.

And I would agree with that argument.

▲

valenterry 8 days ago | parent [-]

Which is exactly what I said.

	▲	palata 8 days ago \| parent [-]
		You're right, I misunderstood the context. I agree with you then :-).

▲ Flimm 9 days ago | parent | prev | next [-]

What about server-generated passwords, like API keys? That would solve the main problem with passwords, namely, that people reuse the same weak password everywhere. I doubt it would be as popular as user-selected passwords, but I still wonder why no website has tried it.

	▲	dchest 9 days ago \| parent [-]
		How is that different from a passkey's private key, apart from being less secure? It's literally something like `hnkTKS7h2WCOBr3CxSKM51cSVKSkiKOSlQsMhtRZ0CU` stored in the password manager.

▲ palata 9 days ago | parent | prev | next [-]

Why not keeping passwords AND passkeys? Most of the time I want to use passkeys for different reasons, but if I lose my passkeys I can go back to my printed list of passwords.

	▲	valenterry 8 days ago \| parent [-]
		Exactly! That is what I would like to have too and that is in fact how I currently use passkeys.

▲ syhol 9 days ago | parent | prev [-]

A passkey import/export standard is in the works. Once I know I can backup everything in a keepass database I'll be much happier.

	▲	valenterry 9 days ago \| parent [-]
		True. Still, the difference is that with passwords, no one can stop you from "exporting" it. With passkeys, it could be changed, and the power for that lies in the hands of only a few vendors. It's still a bit concerning if they replace passwords forcefully.

▲ dur-randir 9 days ago | parent | prev | next [-]

Let me decide for myself what must I love.

▲ account42 9 days ago | parent | prev | next [-]

Also without all that pesky privacy and choice of what you run on your own computer.

▲ RHSeeger 9 days ago | parent | prev [-]

I love password managers. I dislike passkeys. So clearly that's not the case.