← Back to context

Comment by HighGoldstein

7 hours ago

This is completely out of touch with the reality of the average user. The main causes of account theft continue to be phishing and data breaches which are easily exploited because most people reuse their passwords and will never stop doing so to use a password manager. Biometric passkeys are probably the only viable way to improve the situation.

6 comments

HighGoldstein

Reply
pear01  7 hours ago

Really? What about phone theft? If someone sticks you up and knows all it takes is your finger to unlock the phone, I would think they would be more tempted to do so, as it takes more or less the same level of coercion as taking the phone. And it's easier than fumbling around with a password... therein is the double edged sword...

  • umanwizard  6 hours ago

    Why couldn’t they force you to reveal your password?

    • pear01  3 hours ago

      Demanding a password introduces more error and more room for evasion than a finger, which as I said is about the same as getting the phone in the first place. You are right that in some, maybe even most cases, it may not make a difference. But when time is of the essence, additional obstacles are often simply avoided.

      You also might ask who is sticking you up. For example, I believe there is fourth amendment literature re government officials that have gotten away with using an arrested persons biometrics to unlock a phone, in a manner in which compelling the release of a password would be illegal. Put another way, I can simply grab your finger or put your phone in front of your face, whereas beating you until you surrender your password is a lot harder to accomplish without creating additional consequences.

      2 replies →