49
you are viewing a single comment's thread
view the rest of the comments
view the rest of the comments
this post was submitted on 08 Jun 2025
49 points (91.5% liked)
Privacy
2580 readers
324 users here now
Welcome! This is a community for all those who are interested in protecting their privacy.
Rules
PS: Don't be a smartass and try to game the system, we'll know if you're breaking the rules when we see it!
- Be civil and no prejudice
- Don't promote big-tech software
- No apathy and defeatism for privacy (i.e. "They already have my data, why bother?")
- No reposting of news that was already posted
- No crypto, blockchain, NFTs
- No Xitter links (if absolutely necessary, use xcancel)
Related communities:
Some of these are only vaguely related, but great communities.
founded 7 months ago
MODERATORS
Passkeys are actually superior to passwords from a security standpoint though.
I believe the passkey system doesn't mandate you use Google to hold the key FWIW, I think apple has a compatible system you can keep the key in for iPhones and I believe you can use something like a yubikey for them too
API docs: https://developer.mozilla.org/en-US/docs/Web/API/Web_Authentication_API
But passkeys are NOT MFA. They essentially replace "what you know" with "what you have". Adding a second passkey like a yubikey only furthers the single factor. Also courts have ruled that you can be compelled to provide biometric data to unlock your accounts.
I suspect Google is moving to replace passwords not out of the kindness of their hearts but to allow the government to get into your account.
My preferred MFA combination is yubikey (or similar physical key) + Password/PIN.
You don’t have to use biometrics to authenticate your passkeys.