• @[email protected]
    link
    fedilink
    108 months ago

    The user does not need to understand it. A user does not understand https or hashing and salting. Still, every one of these is important these days for online security.

    I am not a huge fan of passkeys themself, especially when the secrets are held by big tech, but they promise better security and protection against command n attacks like phishing.

    • @[email protected]
      link
      fedilink
      18 months ago

      I take your point. But I would argue that the user needs at least to understand the basic theory. Otherwise you get me, who sees no benefit, resents when it’s imposed unilaterally, and finds ways around the inconvenience.