| ▲ | jrm4 2 hours ago | |
Yes. And as much as I hate "well, users should just be smarter and deal with inconvenience," I think it may fit here. Identity is always hard, and I strongly doubt there is any great way that makes it "easier" and still safe. Aka, yes please kill passkeys, or at least be super upfront and informative. "When you use passkeys, you are giving your keys to Apple or Google, and they cannot guarantee safety." | ||
| ▲ | iamnothere 35 minutes ago | parent [-] | |
It may be that different types of identity are preferable for different use cases, rather than converging on a single system. > "When you use passkeys, you are giving your keys to Apple or Google, and they cannot guarantee safety." Not true with hardware passkeys, which also add a true second factor. Central passkeys are a problem, though. | ||