Passkeys: how do they work? No, like, seriously. It’s clear that the industry is increasingly betting on passkeys as a replacement for passwords, a way to use the internet that is both more secure and more user-friendly. But for all that upside, it’s not always clear how we, the normal human users, are supposed to use passkeys. You’re telling me it’s just a thing… that lives on my phone? What if I lose my phone? What if you steal my phone?
I didn’t like that they interviewed a corporate PR person instead of a real security expert. Sorry but that lady is just deflecting and spinning and missing so many important details to promote 1password.
Generally like the verge but this one was a bit lazy ngl - was there really no neutral or open source expert available?
Heavybell@lemmy.world 8 months ago
Until someone can explain to me how I can transfer, manage and control my passkeys without syncing them to some hostile corporation’s cloud infrastructure, passkeys will remain a super hard sell for me.
TreeGhost@lemm.ee 8 months ago
You can use Bitwarden to store passkeys. Not sure if the self hosted solution has support for it yet though.
sailingbythelee@lemmy.world 8 months ago
I must admit that, despite reading about passkeys a bit, I still don’t understand the actual practicalities. I seem to recall that Bitwarden can store keys, but can’t generate them. If that’s true, who generates the passkey?
TheOneCurly@lemm.ee 8 months ago
Vaultwarden does at least, I’ve been using it with passkeys for the last couple months and it’s been great.
csolisr@communities.azkware.net 8 months ago
VaultWarden user here - yes you can now use your own self-hosted server to store passkeys and that’s a gigantic game-changer. Just install the BitWarden add-on on a recent version of Firefox and voilà
subtext@lemmy.world 8 months ago
2024.1.2 released with self-hosted server passkey support.
TBH though I would not trust myself to self host my keys to my digital life when the alternative is $40/year for the whole family. You may have a different perspective though.
DemBoSain@midwest.social 8 months ago
I currently use Syncthing to keep my Keepass database updated on my phone, laptop, and home server. Any change anywhere is instantly sent directly to the other 2 devices.
drengbarazi@lemmy.world 8 months ago
this is the way
you can even tweak folders to either send or receive only on some devices
plus if you really want to be safe you can set file versioning and ignore deletes on a folder to make it strictly backup on more than one device
no internet connection required, you can set it all on lan
I think it is my favorite open-source project after Torvalds’ creations
Heavybell@lemmy.world 8 months ago
Yeah, I do the same but with nextcloud.
boatswain@infosec.pub 8 months ago
Does KeePass support passkeys?
csolisr@communities.azkware.net 8 months ago
Can you use SyncThing along with Nextcloud? I currently use Nextcloud to store my data, but the one part where it still lags a bit behind is on Android specifically (you need to manually sync certain changes).
Landless2029@lemmy.world 8 months ago
KeePass
Self hosted password keeper
Heavybell@lemmy.world 8 months ago
I already use KeePass, but as far as I know it doesn’t do passkeys, only passwords?
Flying_Hellfish@lemmy.world 8 months ago
Depends on where the line is as far as evil goes. Most of the popular password managers are now starting to support passkey login.
EngineerGaming@feddit.nl 8 months ago
I draw the line at the password manager being fully local.
Tau@sopuli.xyz 8 months ago
Browsers can save them and extensions like, KeepassXC, can behave like a passkey provider
Heavybell@lemmy.world 8 months ago
That’s something, but isn’t half the benefit meant to be storing them in the TPM? Also, that won’t help if you’re logging into a game or app, surely? Would love to be wrong on that, of course.
johannesvanderwhales@lemmy.world 8 months ago
You can create passkeys on individual devices without cloud syncing them.
frizop@lemmy.world 8 months ago
Enpass stores the passkey in their db, can be used cross platform and has browser extensions and local (or WiFi) syncing.