Passkeys and Modern Authentication

(lucumr.pocoo.org)

184 points Bogdanp | 1 comments | 02 Sep 25 13:47 UTC | HN request time: 0.204s | source

Show context

juancn ◴[02 Sep 25 17:27 UTC] No.45106230[source]▶

    Signing into my accounts on my children’s devices has turned from a straightforward process to an incredibly frustrating experience. I find myself juggling all kinds of different apps and flows.

This strikes home for me, I'm the main gatekeeper of passwords and service accounts in my home. 2FA and passkeys are so annoying to juggle.

My kids use prepaid numbers, once I changed one and forgot to tell Apple, when I realized that I needed the old number later, it took me a month at least to get it back.

I really like passwords, the security risks are well known and really easy to handle compared to 2FA and all that crap, specially when 99% of your accounts are not sensitive enough to merit anything fancy.

replies(5): >>45106514 #>>45106530 #>>45107602 #>>45108644 #>>45112401 #

toomuchtodo ◴[02 Sep 25 17:44 UTC] No.45106514[source]▶

>>45106230 #

Passwords are a weak authentication mechanism and incur liability. MFA is good, Passkeys are better. One time passwords via email are tolerable, still better than passwords.

(customer identity and access management is a component of my work at a fintech)

replies(3): >>45106589 #>>45106861 #>>45111579 #

1. 1oooqooq ◴[03 Sep 25 02:12 UTC] No.45111579[source]▶

>>45106514 #

let me guess, until last years you had deployed a java applet keypad for users to log in? and today every time I can your recording offer to enroll in voice print?

yeah i will not be taking advice from the majority of people in Fintech on this topic. thank you.

↑