- cross-posted to:
- protonprivacy@lemmy.world
- cross-posted to:
- protonprivacy@lemmy.world
- Big Tech has implemented passkeys in a way that locks users into their platforms rather than providing universal security
- Passkeys were developed to replace passwords for better account security, but their rollout by Apple and Google has limited their potential
- Proton Pass offers passkeys that are universal, easy to use, and available to everyone for improved online security and privacy.
When vaultwarden supports this I’ll play ball. If I don’t have control over my authentication methods, then they aren’t my authentication methods.
Do you really think it’s a good idea to store your password, TOTP and pass key in one place?
Yes, as long as that place is only accessible by a physical passkey (such as a Yubikey). The risk is miniscule and the convenience is 100% worth it.
I’m actually not sold that I should be putting all my keys in a single password manager like Bitwarden.
To my bank? No. To a Lemmy account? Yep.
I personally settled on having TOTP in the same application but in a different database.
Bitwarden does, not sure about the self-hosted version.
Still waiting for the mobile app. Maybe the firefox addon would work, but would prefer the app
Vaultwarden has supported pass keys for a while. The client app does all the hard work in this pattern.