|
|
|
|
|
|
by Steltek
406 days ago
|
|
|
From the article: > But how can websites know whether its users are using secure authenticators? Authenticators can cryptographically prove certain facts about their origins, like who manufactured it, by generating an attestation statement when the user creates a passkey; this statement is backed by a certificate chain signed by the manufacturer. How many scummy companies trot out "Let me protect you from yourself" to justify taking away their users' freedoms? |
|
|