Comment by nerdsniper

19 hours ago

Those don't prove that a human is present. A FIDO2 key can be automated by electronic relay. The only way to do this involves device attestation - locking devices down and utilizing hardcoded TPM/Secure Enclave esque chips. The best we can hope for would be an open standard for those chips so that people can use them with their own X.509 certificates that lets them choose their own CA.

3 comments

nerdsniper

nitwit005 19 hours ago

Real hardware doesn't mean a human is present either, unfortunately. It just means that you have to spend on real devices to bypass these defences.

prima-facie 16 hours ago

This was exactly my point as well. Everything that can be automated will eventually be automated.
nerdsniper 16 hours ago

Maybe Worldcoin really was the answer after all XD