bdjegifjdvw@lemmy.world to Programmer Humor@programming.dev · 2 days agoI love password based loginlemmy.worldimagemessage-square148fedilinkarrow-up11.21Karrow-down122
arrow-up11.19Karrow-down1imageI love password based loginlemmy.worldbdjegifjdvw@lemmy.world to Programmer Humor@programming.dev · 2 days agomessage-square148fedilink
minus-squarenibbler@discuss.tchncs.delinkfedilinkEnglisharrow-up6·1 day agodont think so. what i gatherd passkeys is a public/private key scheme, much like pubkey auth in ssh logins.
minus-squareBCsven@lemmy.calinkfedilinkarrow-up4arrow-down1·1 day agoIts still just a single factor if some body steals your private key.
minus-squarenibbler@discuss.tchncs.delinkfedilinkarrow-up1·1 day agoIts never transmitted, can be stored in HSMs. Anything that’s handled wrong is unsafe
minus-squareBCsven@lemmy.calinkfedilinkarrow-up2arrow-down1·1 day agoSteals it from your system I meant. Which has even happened to security pros.
minus-squareGt5@lemmy.ziplinkfedilinkarrow-up1·1 day agoYes, buts it’s not something that can be easily guessed or found on a post it on the monitor
minus-squareBCsven@lemmy.calinkfedilinkarrow-up2·1 day agoTrue dat. But if they compromise your computer the first thing the look for is key files. Like my ssh keys are in a root permission file. Protected from general sight, but if somebody compromises my PC with a CVE on then goodbye keys. At least with hardware key it is removable and requires a button press. So accessing becomes physical access or quantum computer cracking
dont think so. what i gatherd passkeys is a public/private key scheme, much like pubkey auth in ssh logins.
Its still just a single factor if some body steals your private key.
Its never transmitted, can be stored in HSMs. Anything that’s handled wrong is unsafe
Steals it from your system I meant. Which has even happened to security pros.
Yes, buts it’s not something that can be easily guessed or found on a post it on the monitor
True dat. But if they compromise your computer the first thing the look for is key files.
Like my ssh keys are in a root permission file. Protected from general sight, but if somebody compromises my PC with a CVE on then goodbye keys.
At least with hardware key it is removable and requires a button press.
So accessing becomes physical access or quantum computer cracking
Phew!