undefined | Better HN

0 pointspx432y ago0 comments

> But this is still too psychologically taxing for the masses.

Literally requires the exact same cognitive load as using keys to start your car. The problem is that so many people got comfortable delegating all their financial and data risk to third parties, and those third parties aren't excited about giving up that power.

0 comments

thesuperbigfrog2y ago

>> Literally requires the exact same cognitive load as using keys to start your car. The problem is that so many people got comfortable delegating all their financial and data risk to third parties, and those third parties aren't excited about giving up that power.

This perfectly describes the current situation with passkeys.

Passkeys are a great idea--they are like difficult, if not impossible-to-guess passwords generated for you and stored in a given implementor's system (Apple, Google, your password manager, etc.).

Until passkey systems support key export and import, I predict that they will see limited use.

Who wants to trust your passkeys to a big corporation or third party? Vendor lock-in is a huge issue that cannot be overlooked.

Let me generate, store, and backup MY passkeys where I want them.

That doesn't solve the general "I don't want to have to manage my keys" attitude that some people have, but it prevents vendor lock-in.

px43OP2y ago

Why export/import? Just create new passkeys on whatever device or service you want, and register those as well. OR just use a yubikey, put it on your keyring, and use it to log into everything.

Most crypto wallets do have import/export enabled though, so if you're logging in with a web3 identity, everything should just work.

thesuperbigfrog2y ago

>> Why export/import?

Why not have key export and import?

Are they my keys or not?

>> Just create new passkeys on whatever device or service you want, and register those as well.

I would rather not have different keys for each device for each account. It is an unnecessary combinatorial explosion of keys that requires more effort than is really needed.

When you get a new device, you need to generate and add new keys for every account. Why can't you just import existing keys?

1 more reply

marcinzm2y ago

> The problem is that so many people got comfortable delegating all their financial and data risk to third parties

The "problem" is that most people prefer to not lose their life savings because their cat stole a little piece of metal and dropped it in the forest.

px43OP2y ago

Yup, and some people crash their cars, and some people accidentally burn their own house down. Most people have figured out how to deal with situations like what you mention. People who have trouble following best practices are going to have a hard time, but that's no different than status quo.

frumper2y ago

The solution people came up with a long time ago were banks and is very much considered a best practice to keep your money there.

1 more reply

j / k navigate · click thread line to collapse

0 comments

thesuperbigfrog2y ago

This perfectly describes the current situation with passkeys.

Passkeys are a great idea--they are like difficult, if not impossible-to-guess passwords generated for you and stored in a given implementor's system (Apple, Google, your password manager, etc.).

Until passkey systems support key export and import, I predict that they will see limited use.

Who wants to trust your passkeys to a big corporation or third party? Vendor lock-in is a huge issue that cannot be overlooked.

Let me generate, store, and backup MY passkeys where I want them.

That doesn't solve the general "I don't want to have to manage my keys" attitude that some people have, but it prevents vendor lock-in.

px43OP2y ago

Why export/import? Just create new passkeys on whatever device or service you want, and register those as well. OR just use a yubikey, put it on your keyring, and use it to log into everything.

Most crypto wallets do have import/export enabled though, so if you're logging in with a web3 identity, everything should just work.

thesuperbigfrog2y ago

>> Why export/import?

Why not have key export and import?

Are they my keys or not?

>> Just create new passkeys on whatever device or service you want, and register those as well.

I would rather not have different keys for each device for each account. It is an unnecessary combinatorial explosion of keys that requires more effort than is really needed.

When you get a new device, you need to generate and add new keys for every account. Why can't you just import existing keys?

1 more reply

marcinzm2y ago

> The problem is that so many people got comfortable delegating all their financial and data risk to third parties

The "problem" is that most people prefer to not lose their life savings because their cat stole a little piece of metal and dropped it in the forest.

px43OP2y ago

frumper2y ago

The solution people came up with a long time ago were banks and is very much considered a best practice to keep your money there.

1 more reply

j / k navigate · click thread line to collapse