They are also phishable and man-in-the-middleable. So not a passkey replacement. | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		EtienneK on May 8, 2023 \| parent \| context \| favorite \| on: Passkeys will be importable, exportable, cross-dev... They are also phishable and man-in-the-middleable. So not a passkey replacement.

EtienneK on May 8, 2023 [–]

Not entirely sure why this is getting downvoted. Passkey is the only non-phishable authentication mechanism that works out-of-the-box on billions of devices. That is huge value from a security perspective.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact