nlinecomputers
Well-Known Member
- Reaction score
- 8,570
- Location
- Midland TX
It works fine on both platforms, the issues with it being unusable as an authenticator with Google and Apple account systems is a Google and Apple failing.And yet it can’t cross the Google/iOS divide.
I think you have misunderstood my point. If I have an Android phone and I get a new Android phone all I have to do is login to my Microsoft Account and I can recover my tokens. If I cross the river and switch to an iPhone I can’t access them. For whatever reason Microsoft is using on iPhones the iOS key ring to store the data.It works fine on both platforms, the issues with it being unusable as an authenticator with Google and Apple account systems is a Google and Apple failing.
Microsoft made its systems compatible, so you can use Apple and Google authenticators with all their junk.
I fear this is a space where regulation will be required.
P.S. Amazon's auth process is the largest joke in the history of jokes... it's just so horrifically poorly designed I have to assume someone was making it a joke on purpose. I'm not watching the bulk of that video as a result. That's not what passkeys are, they are NOT a replacement for passwords, they are MFA to get an authtoken to start and should be "single factor" in effect.
But they can't be because insurance companies... again.. regulation.
No...I think you have misunderstood my point. If I have an Android phone and I get a new Android phone all I have to do is login to my Microsoft Account and I can recover my tokens. If I cross the river and switch to an iPhone I can’t access them. For whatever reason Microsoft is using on iPhones the iOS key ring to store the data.
I’m sorry but you are wrong. Passkeys are intended to be a replacement for both usernames, passwords, and MFA. That’s the pitch. And before you say it, yes that’s not as secure as using it as just an MFA process. Passkeys are supposed to be a compromise between convenience and security that will provide better protection than passwords alone. The point is to make the process so stupidly easy that it gains traction as the default login process.
But for that to happen a truly universal login process and storage/access system that works the same on all devices and fully transferable to new phones has to be adopted. We we all know will never happen. So passkeys are doomed.
The point is to make the process so stupidly easy that it gains traction as the default login process.