On Wed, Jul 30, 2025 at 12:14 PM Sriram Karra via Silklist < [email protected]> wrote:
So dear Silk listers, I'm curious to hear *your personal* experiences with, > and your original thoughts about, this new tech. It could be either from > your own online journeys, or while acting as tech support for your family > and friends. > >From a purely operational (and not theoretical) perspective, passkeys are multiple things. They are credentials that live either in your password manager (in which case they are portable) or in your phone, or perhaps your FIDO2 key (in which cases they are not). This poses a challenge in referring to the notion of 'passkey' as a single thing, when in practice it is multiple things. But, more importantly, there is a challenge of *communication*. Much of the communication around passkeys seems to give the impression that it is your PIN/fingerprint/face that is unlocking the remote site, which is not how this works. There are fundamental issues with this narrative in the minds of various people I have tried explaining this to, which leads to me giving a short talk on public key cryptography - which is not the way I would have chosen to spend my time. :) Udhay
-- Silklist mailing list [email protected] https://mailman.panix.com/listinfo.cgi/silklist
