-
Finally. I have been using soft-u2f for a while now and keys in hardware > passwords/totp/dongles It’s not for every case, but I think/hope native webauthn/device authentication is going to lead to a noticeable decrease in account compromises in the coming years Assuming…1/2 @johnwilander/1275872605057110018
Mood +4 🙂
-
2/2 that the account providers can get in top of the broken ecosystem of oauth apps The chain is only as strong as the weakest link and one bad or compromised app bypasses it all We need more granular permissions, and something similar to ios “oauth-app X is trying to do Y”Permalink
Mood 0