Comment on Big Tech passkey implementations are a trap | Proton
SkaveRat@discuss.tchncs.de 7 months ago
I’m well versed in IT security, and even with (or because of) my knowledge, I still haven’t looked deep into setting up passkeys on my services. Just because it’s such a clusterfuck of weird implementations.
And I’m managing at least one service at work that could totally benefit from passkey integration. The headache of looking into how to properly implement them is just way too much
deranger@lemmy.world 7 months ago
It’s quite simple on iOS. IIRC, when logging into the paypal website you get a prompt asking if you’d like to use passkeys. Accept that, then you get a keychain prompt asking if you’d like to make/use a passkey. Click continue and pass FaceID authentication, then you’re in with a passkey. For future logins you click the login with passkey and it faceIDs you in. It’s easy.
randomaccount43543@lemmy.world 7 months ago
Then you are totally locked in with Apple devices and cannot switch to Android and take your passkeys with you
deranger@lemmy.world 7 months ago
I’m not saying it’s good, I’m saying it’s easy.