[sebk]

My concern is that without it, people might default to a software implementation that's interoperable. While significantly better than passwords, it's still worse than hardware-backed keys.

> Can’t solve for everything in one go.

Sure, but that's the FIDO alliance working group problem, not ours. As consumers, I believe we should actively ask for these things.

[ndriscoll]

Most people probably should default to a software implementation. Hardware keys are fine for work where IT can send you a new one and your employer eats the cost of their security measures while you can't do work, but for day-to-day life they introduce risks or restrictions I don't want while solving problems I don't have.