Comment by nottorp 1 month ago Same with passkeys actually. 8 comments nottorp Reply SchemaLoad 1 month ago Passkeys get synced between your devices so they aren't any more fragile than passwords in a password manager. lsowen 1 month ago Passkeys _may_ be synced, but that isn't guaranteed. For example a "device bound passkey" isn't synced. tadfisher 1 month ago There is a project under way to specify how to "sync" device-bound keys between authenticators: https://fidoalliance.org/specs/cx/cxp-v1.0-wd-20241003.htmlIdeally this should have been hashed out before deploying passkeys everywhere, but I guess you can always register multiple passkeys for the sites that allow you to. 3 replies → 0cf8612b2e1e 1 month ago The big providers only want themselves to be able to backup passkeys. I do not want to handover my secrets to Apple/Microsoft/Google. lilyball 1 month ago Apple Keychain syncing is end-to-end encrypted, Apple cannot see the contents of your synced keychain.
SchemaLoad 1 month ago Passkeys get synced between your devices so they aren't any more fragile than passwords in a password manager. lsowen 1 month ago Passkeys _may_ be synced, but that isn't guaranteed. For example a "device bound passkey" isn't synced. tadfisher 1 month ago There is a project under way to specify how to "sync" device-bound keys between authenticators: https://fidoalliance.org/specs/cx/cxp-v1.0-wd-20241003.htmlIdeally this should have been hashed out before deploying passkeys everywhere, but I guess you can always register multiple passkeys for the sites that allow you to. 3 replies → 0cf8612b2e1e 1 month ago The big providers only want themselves to be able to backup passkeys. I do not want to handover my secrets to Apple/Microsoft/Google. lilyball 1 month ago Apple Keychain syncing is end-to-end encrypted, Apple cannot see the contents of your synced keychain.
lsowen 1 month ago Passkeys _may_ be synced, but that isn't guaranteed. For example a "device bound passkey" isn't synced. tadfisher 1 month ago There is a project under way to specify how to "sync" device-bound keys between authenticators: https://fidoalliance.org/specs/cx/cxp-v1.0-wd-20241003.htmlIdeally this should have been hashed out before deploying passkeys everywhere, but I guess you can always register multiple passkeys for the sites that allow you to. 3 replies →
tadfisher 1 month ago There is a project under way to specify how to "sync" device-bound keys between authenticators: https://fidoalliance.org/specs/cx/cxp-v1.0-wd-20241003.htmlIdeally this should have been hashed out before deploying passkeys everywhere, but I guess you can always register multiple passkeys for the sites that allow you to. 3 replies →
0cf8612b2e1e 1 month ago The big providers only want themselves to be able to backup passkeys. I do not want to handover my secrets to Apple/Microsoft/Google. lilyball 1 month ago Apple Keychain syncing is end-to-end encrypted, Apple cannot see the contents of your synced keychain.
lilyball 1 month ago Apple Keychain syncing is end-to-end encrypted, Apple cannot see the contents of your synced keychain.
Passkeys get synced between your devices so they aren't any more fragile than passwords in a password manager.
Passkeys _may_ be synced, but that isn't guaranteed. For example a "device bound passkey" isn't synced.
There is a project under way to specify how to "sync" device-bound keys between authenticators: https://fidoalliance.org/specs/cx/cxp-v1.0-wd-20241003.html
Ideally this should have been hashed out before deploying passkeys everywhere, but I guess you can always register multiple passkeys for the sites that allow you to.
3 replies →
The big providers only want themselves to be able to backup passkeys. I do not want to handover my secrets to Apple/Microsoft/Google.
Apple Keychain syncing is end-to-end encrypted, Apple cannot see the contents of your synced keychain.