• sugar_in_your_tea@sh.itjust.works
    link
    fedilink
    English
    arrow-up
    2
    arrow-down
    1
    ·
    edit-2
    6 months ago

    I honestly don’t like passkeys, at least how they currently work. It seems the intent is to replace MFA with just one factor. I prefer 2FA with TOTP separate from my password manager, which means an attacker would need to exploit both to access my accounts.

    That said, it’s a sticking point for many people, so I hope Bitwarden gets it soon. I just probably won’t use it.

    • randombullet@programming.dev
      link
      fedilink
      English
      arrow-up
      4
      ·
      6 months ago

      From my understanding, passkeys is supposed to be something you have (phone) and something you know (pin) or something you are (biometrics)

      I still use hardware keys like a yubikey (something I have) and my normal password via a password manager.