“Passkeys,” the secure authentication mechanism built to replace passwords, are getting more portable and easier for organizations to implement thanks to new initiatives the FIDO Alliance announced on Monday.

  • Aniki 🌱🌿@lemmings.world
    link
    fedilink
    English
    arrow-up
    57
    arrow-down
    7
    ·
    29 days ago

    I’ll switch when it’s fully implemented in open source and only I am the one with the private key. Until then its just more corporate blowjobs with extra steps.

    • 4am@lemm.ee
      link
      fedilink
      English
      arrow-up
      23
      arrow-down
      1
      ·
      28 days ago

      That’s exactly how passkeys work. The server never has the private key.

      • devfuuu@lemmy.world
        link
        fedilink
        English
        arrow-up
        6
        ·
        28 days ago

        And we all remember the huge drama about it because they allowed for taking the keys out and backup them up.

        • Kusimulkku@lemm.ee
          link
          fedilink
          English
          arrow-up
          3
          ·
          28 days ago

          I think a big part of it was exporting them plain text by default. I’m in the “I know what I’m doing” camp but I guess for someone who doesn’t that sort of handholdy stuff not allowing the export them without encryption stuff makes sense.

    • huginn@feddit.it
      link
      fedilink
      English
      arrow-up
      10
      ·
      28 days ago

      Passkeys are an ancient authentication setup, have always been better than passwords and are finally getting traction.

    • priapus@sh.itjust.works
      link
      fedilink
      English
      arrow-up
      9
      ·
      28 days ago

      What do you means by this? What part do you want to be open source? Passkey are just cryptographic keys, no part of that requires anything unfree. There’s aready an open source authentication stack you can use to implement them. You can store them completely locally with KeyPassXC for selfhost Vaultwarden to store them remotely. Both are open source?