A good read and a validation that it’s frequently a good idea to approach new security technologies with caution. The new hotness isn’t always the best thing.
Honestly, when I saw “passkeys,” my first thought was “vendor lockin.” Google and GitHub did it with SSO using OAuth, and they’re doing it again with passkeys.
Honestly, this is a “surprised Pikachu” moment for me. The closer you get to convenience, the more the big players will want to lock you in:
biometrics
voice recognition
passkeys
Passwords are hard to lock down because it’s easy to switch to something else.
A good read and a validation that it’s frequently a good idea to approach new security technologies with caution. The new hotness isn’t always the best thing.
Honestly, when I saw “passkeys,” my first thought was “vendor lockin.” Google and GitHub did it with SSO using OAuth, and they’re doing it again with passkeys.
Honestly, this is a “surprised Pikachu” moment for me. The closer you get to convenience, the more the big players will want to lock you in:
Passwords are hard to lock down because it’s easy to switch to something else.