3 comments

[ 14.5 ms ] story [ 76.3 ms ] thread
> having people enter a password to log in is a dying authorization flow - it’s too easy to crack databases, ... passkey ties it to your device

Your portable nickable device, right?

I'll rather a password tied to my brain, thanks.

I've been avoiding them and intend to keep doing so as long as possible. I've had passwords handled perfectly well for almost 20 years. I do not see passkeys as having any particular benefits to me and do not want to manage them.
I have an HSA managed by HealthEquity for work. Recently they forced us all onto passkeys.

About 80% of my login attempts now randomly fail with a “you are not authorized to see this page” error. What a system.