Didn’t Okta just straight up get all their customer data hoovered up by hacker squad
Every ‘passwordless’ solution to passwords always ends up being the informational equivalent of ‘passwords, but the method is changed’. Biometrics are just a once-in-a-lifetime password that’s entered differently, password managers are just all your passwords, but behind one big password.
Even 2FA is just “password you know” and “password your device knows”.
Not saying these solutions don’t have value, but to say passwords are outdated is a bit silly.
USB/NFC hardware keys are pretty good though, they are just the current form of smartcard hardware keys that have been around since the late 1990s for high security environments. If you worked for certain federal agencies or private sector companies, you might have used them. They are old technology at this point that has more recently been introduced into the consumer space as platforms and companies face backlash for constantly having security breaches.
I have used them (coincidentally, with Okta), and they are pretty neat! I actually choose to use them instead of a smartphone app where I can, because it’s much faster to use. I’d recommend them to companies as a good measure.
They are still effectively 2FA where it’s just a lot harder to work out the proprietary system with which the password is encoded. So it is a sort of a ‘security by obscurity’, but the likelihood of someone going through all the work to disassemble your key and work it out with you noticing / before the key gets invalidated is pretty low, so unless you’re protecting something super-duper high value (and assuming the manufacturer hasn’t screwed up too badly), they’ll do a good job.
Guy who thinks passwords are outdated, setting a new password for his bank app: Hmm, how about Christmas123!, just like all my other logins so I don’t have to worry about forgetting it!
A fundamental problem with passwords is that you either have a “secure” selection of large, distinct, constantly rotating codes that you have to keep track of on paper/in an app (insecure!) or a single memorable code that - once it is cracked - exposes all affiliated systems (insecure!)
There’s a serious argument to the effect that a physical id tied to a digitally managed rotating set of large arcane codes is at least as secure as the paper/app-based list of hard codes. The big problem with this technology is that it requires a more complex hardware interface with more attendant IT support. So you’re talking about $$$ that people don’t want to spend for additional technical security.
Two-factor authentication is cheaper and easier than biometrics. So we’ve settled on that instead.
I simply use the fingerprint scanner with my balls. They’d never think to check there.
CW: pretty gross even by my standards
I use my butthole and make sure to get a new hemorrhoid every 120 days to reduce my vulnerability to butthole database leaks
fingerprints, face scanning… my OnePlus just keeps asking for pics of my asshole before I can unlock it. Is this just a China thing?
It’s like a thumbprint, but more secure because you don’t typically rub it on every surface.
As a fellow OnePlus haver, I have LineageOS (which is privacy-focused) installed and am not asked for pics of my asshole
I also use lineageos but still send them pictures of my asshole since I don’t want them to feel left out
