- cross-posted to:
- technology@lemmy.world
- cross-posted to:
- technology@lemmy.world
cross-posted from: https://feditown.com/post/744772
The current security philosophy almost seems to be: “In order to make it secure, make it difficult to use”. This is why I propose to go a step further: “In order to make it secure, just don’t make it”. The safest account is the one that doesn’t exist or that can’t be accessed by anyone, including its owner.
I use a password manager with passkey support and still disabled all my passkeys. The user experience for passkeys is so much worse even when support exists.
How do you login from a device that doesn’t have Bitwarden on it if you have passkeys.
For example a friend’s computer etc
I’d like to hear more about the specifics if the issues you ran into. I keep delaying my options to start using passkeys because it’s a lot to take in at once and the only services implementing them seem to be the most important ones that I really don’t want to experiment with my ability to acess them. I haven’t even been looking at the details of each service’s implementation.
Really? I just used a passkey for the very first time with Google and Bitwarden and it worked quite nicely. What about passkeys is worse for you?
Just answered in a reply to a different comment.
What’s the problem with combination of manager and passkeys?
Using a security key as a
password managerpasskey seems to resolve this issue (I think?), but I guess the issue is more a problem for the casual user who wouldn’t bother with a security key!Can you elaborate on what it means to use a security key as a password manager? I’m not sure if I understand what you mean.
Whoops, I meant “passkey”, I’ll edit my original comment