cm0002@lemmy.world to memes@lemmy.world · 21 days agoTake your passkey and shove it where the sun don't shinelemmy.worldexternal-linkmessage-square47fedilinkarrow-up14arrow-down10
arrow-up14arrow-down1external-linkTake your passkey and shove it where the sun don't shinelemmy.worldcm0002@lemmy.world to memes@lemmy.world · 21 days agomessage-square47fedilink
minus-squareEngywook@lemm.eelinkfedilinkarrow-up0arrow-down1·21 days agoWhy would I want security based on a device? What security this offers greater than a 64 chars password + 2FA?
minus-squareNatanael@infosec.publinkfedilinkarrow-up0·20 days agoTOTP codes can be phished, hardware security keys and passkey can’t
minus-squareEngywook@lemm.eelinkfedilinkarrow-up0·20 days agoI doubt that anyone that doesn’t use “password” as a password and who knows what 2FA is could be easily subject to phishing.
Why would I want security based on a device? What security this offers greater than a 64 chars password + 2FA?
TOTP codes can be phished, hardware security keys and passkey can’t
I doubt that anyone that doesn’t use “password” as a password and who knows what 2FA is could be easily subject to phishing.