Path: ...!eternal-september.org!feeder3.eternal-september.org!news.eternal-september.org!eternal-september.org!.POSTED!not-for-mail
From: Lawrence D'Oliveiro <ldo@nz.invalid>
Newsgroups: comp.misc
Subject: Re: Microsoft now forcing passkeys
Date: Sun, 4 May 2025 07:45:34 -0000 (UTC)
Organization: A noiseless patient Spider
Lines: 19
Message-ID: <vv75uu$1giok$1@dont-email.me>
References: <681601d6$7$19$882e4bbb@reader.netnews.com>
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit
Injection-Date: Sun, 04 May 2025 09:45:35 +0200 (CEST)
Injection-Info: dont-email.me; posting-host="b8dac4bb85e923dfaf8486e3f6e91984";
	logging-data="1592084"; mail-complaints-to="abuse@eternal-september.org";	posting-account="U2FsdGVkX1/jyD3KHgdMkrHL8YAHSYyu"
User-Agent: Pan/0.162 (Pokrosvk)
Cancel-Lock: sha1:wSDWO0fyzJ9izK+1hey1qolv9zc=
Bytes: 1667

On 03 May 2025 11:45:26 GMT, Retrograde wrote:

> Microsoft says that passkeys reduce password use by 20% and wants to
> remove password use altogether.

It would be nice if there were a common, open standard for managing
passkeys ...

Oh wait, there is.

But oh, further wait, Microsoft doesn’t want to support that. It wants
you to use its own proprietary passkey mechanism.

<https://arstechnica.com/security/2025/05/microsoft-pushes-unphishable-logins-forward-with-new-sign-in-options/>

And funny that, but other major corporations are sabotaging the
usefulness of passkeys in the same way, by each insisting you use
their particular implementations of the concept, rather than sharing a
common interoperable one.