Post AXarXzENNIKkBfmCRM by Graycot@fosstodon.org
 (DIR) More posts by Graycot@fosstodon.org
 (DIR) Post #AXafSaWyaAi6gS8UFc by ignaloidas@not.acu.lt
       2023-07-11T16:36:16.083Z
       
       0 likes, 0 repeats
       
       @lispi314@mastodon.top @Graycot@fosstodon.org @azar@fosstodon.org eh, I think rather it's more of a platform capture move. There's a reason why it's only available on the platforms the vendors control. I honestly prefer the name platform authenticator to passkeys, because it better describes what it is. And an authenticator being tied to a platform, makes it harder for you to move away from it. E.g. say you've been using it on iPhones, if you wanna move to Android, you know will need to re-register your new platform authenticator on all of the websites again, which can be a massive annoyance if your only other authenticator is your iPhone. If you went with another iPhone instead of Android, you wouldn't ever have this problem. This works exactly the same if you swap mentions of iPhone and Android. It's adding barriers for moving platforms.Now, from what I've seen, seems like at least Apple is adding API's that could allow "third party platform authenticators", which probably will get used by password manager vendors. I expect that Android will have something similar, purely to avoid anti-competition lawsuits. But most people won't go with third party stuff that would work over different platforms, they'll go with the built in ones, and I think that's one of the motivations behind this.
       
 (DIR) Post #AXarXzENNIKkBfmCRM by Graycot@fosstodon.org
       2023-07-11T18:47:43Z
       
       0 likes, 0 repeats
       
       @ignaloidas @lispi314 @azar The vendor-centric behavior definitely has me on edge. PassKeys (or Platform Authenticators) are so close to being perfect, but the Vendor lock-in concerns me. Android 14 will allow third party platform authentication, and all of the major password managers have announced support for PassKeys.Once third parties can become platform authenticators, my personal concerns will be alleviated.
       
 (DIR) Post #AXarY07K50Hmw5U55M by Graycot@fosstodon.org
       2023-07-11T18:49:53Z
       
       0 likes, 0 repeats
       
       @ignaloidas @lispi314 @azar Though, once quirk I don't often see mentioned is that a PassKey can be bound directly to a hardware key rather than a computer/phone. This allows full portability of the Passkey and you can log-in on any device by plugging in the hardware key. Kinda neat!
       
 (DIR) Post #AXarY0lNg4KQwKE4WW by ignaloidas@not.acu.lt
       2023-07-11T18:51:41.850Z
       
       0 likes, 0 repeats
       
       @Graycot@fosstodon.org @lispi314@mastodon.top @azar@fosstodon.org I mean, that's just FIDO2, and has been a thing for quite a while nowthe whole passkey thing is adapting it to platform authenticators