What is your suggestion for a superior solution to the problems passwords solve?
What is your suggestion for a superior solution to the problems passwords solve?
What an absolute failure of the legal system to understand the issue at hand and appropriately assign liability.
Here’s an article with more context, but tl;dr the “hackers” used credential stuffing, meaning that they used username and password combos that were breached from other sites. The users were reusing weak password combinations and 23andme only had visibility into legitimate login attempts with accurate username and password combos.
Arguably 23andme should not have built out their internal data sharing service quite so broadly, but presumably many users are looking to find long lost relatives, so I understand the rationale for it.
Thus continues the long, sorrowful, swan song of the password.
Not to mention they’re probably paying double for it - once through their taxes for the public school the kids aren’t attending plus the tuition for the private school.
Ah the ol’ security by obscurity plan. Classic.
Sounds weird from inside the echo chamber though
¿Porque no los dos?
Why couldn’t it be both?
Counterpoint: Twitter will continue to maintain a critical mass of users until enough people move somewhere else to make it irrelevant. Continuing to use it only serves to further credentialize the platform, making it even less likely that users will find a new home someplace else.
Agree that passkeys are the direction we seem to be headed, much to my chagrin.
I agree with the technical advantages. Where passkeys make me uneasy is when considering their disadvantages, which I see primarily as:
There’s no silver bullet for the authentication problem, and I don’t think the passkey is an exception. What the passkey does provide is relief from credential stuffing, and I’m certain that consumer-facing websites see that as a massive advantage so I expect that eventually passwords will be relegated to the tomes of history, though it will likely be quite a slow process.