|
|
|
|
|
|
by javawizard
781 days ago
|
|
|
Nope. Passkeys use public-key authentication wherein the server only stores the public half of a keypair and the client authenticates by correctly signing a challenge sent by the server, which the server then verifies using the public key. At no point is the private key ever sent over the network or otherwise exposed to any infrastructure or code controlled by the server. |
|
|