• Lmaydev@programming.dev
    link
    fedilink
    English
    arrow-up
    0
    ·
    1 year ago

    Google is moving that way with passkeys. I think it’ll catch on with many people.

    Just cut the passwords out and go straight to unlocking with a device.

    That said not sure what happens if you lose your device.

    • Baines@lemmy.world
      link
      fedilink
      English
      arrow-up
      1
      ·
      edit-2
      1 year ago

      don’t even have to lose the device

      phone is the most common, plenty of ways in from mitm attacks (insecure wifi for example) to social eng the account phone provider

      guess you could go the dongle route but if it was super common thieves would just target them

      • asdfasdfasdf@lemmy.world
        link
        fedilink
        English
        arrow-up
        1
        ·
        1 year ago

        I think the question is less about getting hacked and more about getting permanently locked out of your account.

        • Baines@lemmy.world
          link
          fedilink
          English
          arrow-up
          2
          ·
          1 year ago

          sure but it shouldn’t be, any good process will have some recovery method

          course that can be a vulnerability as well

          thank god recovery questions are dead