[HN Gopher] Passkeys are just passwords that require a password ...
       ___________________________________________________________________
        
       Passkeys are just passwords that require a password manager
        
       Author : dfabulich
       Score  : 10 points
       Date   : 2025-08-04 19:29 UTC (3 hours ago)
        
 (HTM) web link (danfabulich.medium.com)
 (TXT) w3m dump (danfabulich.medium.com)
        
       | JohnFen wrote:
       | > To present a passkey, you have to use a password manager.
       | 
       | This is what makes passkeys nonstarters for me.
        
         | aldshglkhdg wrote:
         | that isn't true at all.
         | 
         | i regularly use a yubikey as a passkey, and it's entirely
         | orthogonal to any password manager i use. it happily just works
         | on firefox on both mac and linux.
         | 
         | to use a passkey, you need a place to store the passkey. that
         | can be a hardware token, a tpm, or a password manager.
        
       | lazzlazzlazz wrote:
       | The fact that you can't actually see the passkey is absurd. I
       | understand it's a "feature" prevent phishing -- victims have a
       | lot less to share -- but it constrains more sophisticated storage
       | and use of passwords.
        
       | Darkskiez wrote:
       | Except you can store the passwords on a usb key / remote over
       | bluetooth, and then also keep them secret from the potentially
       | compromised host.
        
         | gnabgib wrote:
         | The first passkeys were physical (USB) keys. And you never
         | share the key with a host or server.
        
       ___________________________________________________________________
       (page generated 2025-08-04 23:01 UTC)