| fishing is another topic we did not talk about passwords vs. passkeys we talked about whether a public key is actually a similar secret than a well managed (hashed) password well it is not up to you to decide what terms are normal
the language, concepts evolve if you want to understan things better than you do know, sometimes you go 1-2 levels deeper and think for yourself a public key has a security strength, lets say 128 bit
a computer intensive hashed strong password can level this
if you generate unique very strong passwords for each site with your pass manager and(!) they hash it well, it can be compared to giving a public key to the site in this sense your argument which you just copy from other people is false a good argument would be that a public key that we give the sites has 100% strong security and the password will not travel from the client to the server, whereas plenty of domain service provider implement security bad so you have to rely on them in addition, computer intensive hashing on the server is more electricity and cpu|memory usage please try to talk about the actual topic and dont try to derail the conversation like it was about whether passkeys are better or not... hiding behind something you declare normal is also bad practice... just debate the only thing I said: actually, you do give a kind of well guarded secret to the server and it is not like a public key should be advertised I do think it is a very intersting thought and, of course, if a password comes from a weak domain, you can hash minutes, it will never be as strong as a public key |