• Lmaydev@programming.dev
    link
    fedilink
    English
    arrow-up
    0
    ·
    11 months ago

    Google is moving that way with passkeys. I think it’ll catch on with many people.

    Just cut the passwords out and go straight to unlocking with a device.

    That said not sure what happens if you lose your device.

    • Baines@lemmy.world
      link
      fedilink
      English
      arrow-up
      1
      ·
      edit-2
      11 months ago

      don’t even have to lose the device

      phone is the most common, plenty of ways in from mitm attacks (insecure wifi for example) to social eng the account phone provider

      guess you could go the dongle route but if it was super common thieves would just target them

      • asdfasdfasdf@lemmy.world
        link
        fedilink
        English
        arrow-up
        1
        ·
        11 months ago

        I think the question is less about getting hacked and more about getting permanently locked out of your account.

        • Baines@lemmy.world
          link
          fedilink
          English
          arrow-up
          2
          ·
          11 months ago

          sure but it shouldn’t be, any good process will have some recovery method

          course that can be a vulnerability as well

          thank god recovery questions are dead