What account should I use as my first experimental login to convert to using passkeys?
PayPal?
I know you don't know what systems I use, so this is a bit of a meaningless question. But do you know of any popular systems that a lot of people use that now support passkeys?
Preferably ones that can be stored and used by 1Password 8. Maybe I should do 1Password first if they support passkeys.
Proton Pass now supports passkeys on all devices and plans: Beating Bitwarden to mobile devices
Passkeys are an easy and secure alternative to traditional passwords that can help prevent phishing attacks and make your online experience smoother and safer.
Unfortunately, Big Tech’s rollout of this technology prioritized using passkeys to loc ...continues
Les #passkeys sont enfin désormais supportées par #ProtonPass de @protonprivacy sur tous les appareils compatibles et les types de comptes (autant gratuits que payants). Ne manque plus que la possibilité de classer les données par dossiers ou étiquettes (labels).
#ProtonPass, le gestionnaire de #MotDePasse de @protonprivacy, prend désormais en charge les #PassKeys. Peu de sites utilisent déjà cette technologie, mais le nombre augmente de plus en plus. Une nouvelle couche de #sécurité pour vos connections, plus performante et sûr que la #2FA
#Passkeys: reinventing TLS client certificate authentication that is proxyable and all private keys stored in the cloud and then of course the connection is only on one side TLS authenticated and therefore MITM-able from the other (aka proxyable, yes yes CAs and stuff but ya' know). Does this sound about right?
Now that my favorite browser #Firefox and beloved password manager #KeePassXC both support #Passkeys decided to spent some time checking them out.
And boy oh boy are passkeys not ready yet in Firefox. I love Firefox and wish them well, but they really need to do some testing. There are major issues.
#PassKey creation is straight-up broken and resulting in reproducible crashes on both google.com and webauthn.io
Now that all major desktop browsers support #Passkeyscaniuse.com/passkeys is there an effort happening to create browser level APIs open to everybody to ensure passkeys can be used effectively?
While #1Password open sourced their implementation blog.1password.com/passkey-cra… of #passkey-crates the question is: is any work happening on Passkey APIs for browser extensions (i.a. password managers) to use.
While it is great to see big tech move the needle on this and announce their implementations and push this technology, it is a pity those efforts seem to focus around siloing and limiting passkey usage to their implmenetation / tech.
For example Apple makes it impossible for e.g. @keepassxc to generate passkeys in the browser.
Are there plans to work on open browser APIs? is there any public info / efforts you are aware of and can share @rmondello? Specifically for #macOS it would be great if Passkey creation / authentication could be used via Apple APIs.
Hmm, does ebay not let you set up more than one passkey? It says "Passkeys" after setting up one with faceid... And then has the option "Turn off" instead of "Edit"
A pseudo-pattern, because #grapheneOS doesn't allow actual patterns on the basis they are less secure 🙃
Managed to shift the 2 starting numbers to one side. After ~60 brute-force attempts from this incorrect starting position, my intuition/desperation lead me to the correct start position -> success 👴
Super insecurity-inducing episode. (And what about accident induced memory loss? Dementia? Perhaps biometric #passkeys solve it all /s) #infosec
The FIDO specification defines a form of Universal 2nd Factor (U2F) when users log in to a system. Rather than relying on one-time codes sent via SMS, or displayed on a phone screen, these are physical hardware tokens which are used to supplement passwords. When used with websites, this technology is also known as WebAuthn.