Ace@feddit.uk to Technology@lemmy.worldEnglish · 1 day agoWhat is a Passkey? - Computerphilewww.youtube.comexternal-linkmessage-square43fedilinkarrow-up1114arrow-down111
arrow-up1103arrow-down1external-linkWhat is a Passkey? - Computerphilewww.youtube.comAce@feddit.uk to Technology@lemmy.worldEnglish · 1 day agomessage-square43fedilink
minus-squareEncrypt-Keeper@lemmy.worldlinkfedilinkEnglisharrow-up6arrow-down1·14 hours agoNo. When you log into a website your password is sent to the server. A passkey is not.
minus-squareMentalEdge@sopuli.xyzlinkfedilinkEnglisharrow-up6arrow-down1·14 hours agoThat depends entirely on the service. Nothing prevents the password from being hashed client-side, only ever sending the hash to the service.
minus-squarepipe01@programming.devlinkfedilinkEnglisharrow-up4·8 hours agoThen that hash is effectively your password
minus-squareEncrypt-Keeper@lemmy.worldlinkfedilinkEnglisharrow-up6·14 hours agoTrue, but with passkeys they’re never sent, by design.
No. When you log into a website your password is sent to the server. A passkey is not.
That depends entirely on the service.
Nothing prevents the password from being hashed client-side, only ever sending the hash to the service.
Then that hash is effectively your password
True, but with passkeys they’re never sent, by design.