Any comments?
https://www.theverge.com/2023/5/3/23709318/...curity-phishing
Is google passkey more secure than F2A etc?
|
|
 May 5 2023, 04:37 PM, updated 3y ago
Show posts by this member only | Post
#1
|
 
Junior Member
647 posts Joined: Jan 2007 
|
|
Quote|
|
|
|
|
May 29 2023, 01:33 PM
Show posts by this member only | Post
#2
|
Junior Member
587 posts Joined: Feb 2010
|
QUOTE(wkchia @ May 5 2023, 04:37 PM) not sure. basically google passkey is 2FA as well. u need to secondary authenticate ur identity when u login. that is 2FA.instead of keying in TOTP from an app or sms, u authenticate using another form of 2FA. like windows hello. |
|
|
May 29 2023, 10:42 PM
Show posts by this member only | Post
#3
|
All Stars
11,458 posts Joined: Oct 2007 From: KL 
|
> Is google passkey more secure than F2A etc?
Only if the device where your passkey is created and stored is secure. *including any other devices where the passkey is synced to. |
|
|
May 29 2023, 11:41 PM
Show posts by this member only | Post
#4
|
|
Junior Member
500 posts Joined: Dec 2019
|
It is a replacement for passwords not 2FA. If I understand it correctly it works a bit like those old SSH keys.
These are two files matched with each other. The server keeps one, and you keep one. If it matches, you are in, if not you do not get access. There are other ways to make sure that the keys are correct e.g. certs, ip checks, additional passwords etc. The additional authentication when you use the key is the 2FA I guess. 1) passkey (something you have) plus 2) password (something you know) or biometrics (something you are) |
| Change to: |  0.0178sec
 0.84
 5 queries
 GZIP Disabled
Time is now: 14th December 2025 - 12:12 PM |
All Rights Reserved © 2002- 2025 Vijandren Ramadass (~unite against racism~)
Powered by Invision Power Board © 2025 IPS, Inc.