|
|
|
|
|
|
by stavros
978 days ago
|
|
|
> Attestation is a big barrier for self hosting which is the only way I'd adopt it. The issue I have with attestation it that I feel that I feel that we're saying "is it a problem?" "no, but it theoretically could be, so let's use passwords instead". I think that passkeys are better than passwords, even with attestation, and if it becomes a problem, we can complain about it then. |
|
|
For example the admins at my work refuse to "certify" any security keys other than yubikeys. And because those do support attestation it is not possible to circumvent it. For work it's not an issue, they will just have to supply me a key if they want me to use the damn thing, but I don't want consumer-focused sites to use it obviously. Attestation is inherently evil and anti-FOSS.
I just won't opt in to it until attestation is gone, but thanks to iCloud not offering it, it is currently not demanded by any of the sites.