135
The War on Passwords Is One Step Closer to Being Over (www.wired.com)
submitted 1 day ago by GreenEngineering3475@lemmy.world to c/technology@lemmy.world
94 comments fedilink hide all child comments

“Passkeys,” the secure authentication mechanism built to replace passwords, are getting more portable and easier for organizations to implement thanks to new initiatives the FIDO Alliance announced on Monday.

you are viewing a single comment's thread
view the rest of the comments
[-] Pyflixia@kbin.melroy.org 3 points 21 hours ago

Whenever I read stuff like this, my mind goes a bit hazy. Because I'm just finding myself asking 'Why and when did the simple mechanic of passwords get this difficult?'

Maybe if password requirements weren't stingingly stupid, companies cared more about actual security and not an obstacle course they've gotta send people through to do one thing. We wouldn't ever know or need to know systems like this.

[-] EncryptKeeper@lemmy.world 2 points 12 hours ago

Passkeys are much simpler to use than passwords, password managers, 2FA etc. if simplicity is your goal, Passkeys are your personal wet dream.

[-] MonkderVierte@lemmy.ml 0 points 12 hours ago* (last edited 12 hours ago)

That one site - what was it, Mozilla's/Gnome's git? - that needed Aegis for login. Which is unlocked by pasword btw.

[-] helenslunch@feddit.nl 3 points 15 hours ago

'Why and when did the simple mechanic of passwords get this difficult?'

When and because people started storing all their intimate personal details on the internet and hackers sought to exploit those details.

Maybe if password requirements weren't stingingly stupid, companies cared more about actual security and not an obstacle course they've gotta send people through to do one thing.

The obstacle course is the security, unfortunately. That's the problem this aims to solve.

[-] 4am@lemm.ee 8 points 19 hours ago

With passkeys you never need to worry about the storage method used by the site. Some sites STILL store passwords in plaintext. When that database gets hacked, it’s game over.

A public passkey, even stored in plaintext, is useless to an attacker.

Maybe that doesn’t matter for you or me, with our 64-character randomly generated passwords unique to each service, but the bigger picture is that most people just use the same password everywhere. This is how identity theft happens.

this post was submitted on 15 Oct 2024
135 points (91.4% liked)

Technology

58685 readers
4041 users here now

This is a most excellent place for technology news and articles.

Our Rules

  1. Follow the lemmy.world rules.
  2. Only tech related content.
  3. Be excellent to each another!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, to ask if your bot can be added please contact us.
  9. Check for duplicates before posting, duplicates may be removed

Approved Bots

founded 1 year ago
MODERATORS
L3s@lemmy.world
enu@lemm.ee
fry@fry.gs
L3s@fry.gs
enu@lemmy.world
L4s@fry.gs
L4s@lemmy.world