Ace@feddit.uk to Technology@lemmy.worldEnglish · 1 day agoWhat is a Passkey? - Computerphilewww.youtube.comexternal-linkmessage-square43fedilinkarrow-up1115arrow-down19
arrow-up1106arrow-down1external-linkWhat is a Passkey? - Computerphilewww.youtube.comAce@feddit.uk to Technology@lemmy.worldEnglish · 1 day agomessage-square43fedilink
minus-squareEncrypt-Keeper@lemmy.worldlinkfedilinkEnglisharrow-up6arrow-down1·13 hours agoNo. When you log into a website your password is sent to the server. A passkey is not.
minus-squareMentalEdge@sopuli.xyzlinkfedilinkEnglisharrow-up6arrow-down1·13 hours agoThat depends entirely on the service. Nothing prevents the password from being hashed client-side, only ever sending the hash to the service.
minus-squarepipe01@programming.devlinkfedilinkEnglisharrow-up4·7 hours agoThen that hash is effectively your password
minus-squareEncrypt-Keeper@lemmy.worldlinkfedilinkEnglisharrow-up6·13 hours agoTrue, but with passkeys they’re never sent, by design.
No. When you log into a website your password is sent to the server. A passkey is not.
That depends entirely on the service.
Nothing prevents the password from being hashed client-side, only ever sending the hash to the service.
Then that hash is effectively your password
True, but with passkeys they’re never sent, by design.