@delroth @SiteRelEnby (I am upset about Google as the...

✧✦✶✷Catherine✷✶✦✧'s posts Post Back to profile

@delroth @SiteRelEnby (I am upset about Google as the browser vendor specifically. FIDO is fine, passkeys are fine technologically probably)

Like 15 Aug 2023 at 17:37 | Open on mastodon.social

6 comments

Pierre Bourdon

@whitequark @SiteRelEnby yeah... I suspect that Chrome insists on hardware backing or system level credentials management to store the passkeys, and Linux doesn't really have a working API for either.

Could DBUS to GNOME Keyring :P

15 Aug 2023 at 17:38 | Open on mastodon.delroth.net

avi

@delroth there is a general API (org.freedesktop.secrets) that will work with both GNOME Keyring and KDE Wallet, but I’m not sure whether that supports storing passkeys.

15 Aug 2023 at 17:42 | Open on wetdry.world

Raqbit

@delroth @whitequark @SiteRelEnby @nsa Can you say why Linux is less supported here?

15 Aug 2023 at 17:55 | Open on mastodon.social

Nina "Erina" Satragno 💫

@Raqbit @delroth @whitequark @SiteRelEnby

Linux doesn't have a first class authenticator API yeah. If you want to, you can buy a security key and get passkeys that don't sync. I wouldn't recommend that to most people since you have to do your own backup management but if you're a linux user maybe they're less of a footgun.

There's nothing stopping vendors from implementing their own passkey syncing solutions for linux (dashlane and 1password have implementations, maybe more out there?)

15 Aug 2023 at 18:05 | Open on hachyderm.io

Site Reliability Enby🏳️‍⚧️🏁🔦📈🐺👗

@whitequark @delroth Why the fuck don't sites just let me give them the public half of an ECDSA key? No need for random potentially-trojanised standards...

15 Aug 2023 at 18:04 | Open on tech.lgbt

Ryan Castellucci :nonbinary_flag:

@SiteRelEnby @whitequark @delroth And you get to pick the curve parameters, right? 😈

15 Aug 2023 at 18:05 | Open on infosec.exchange