Passwords - so 2010s

010101

What do you think? Will passwords go away because of WebAuthn?

https://www.theverge.com/platform/amp/2019/3/4/18249895/web-authentication-webauthn-world-wide-web-consortium-w3c-standard-browsers

OrdinaryJellyfish

010101 I don't think they'll go away (people are too used to it, everything supports it, etc). WebAuthn is more like a more convenient alternative way of signing in for clients that support it.

jordanjay29

010101 Will passwords go away because of WebAuthn?

No.

Passwords may go away eventually, but it will almost certainly not be because of just one tool, because that's just replacing one faulty idea with another.

Passwords may have the ability to be weak, be stolen or guessed, or lost by the user, but this technology also has key weaknesses. It's still a single point of failure, nothing is ever unhackable so ultimately WebAuthn will be hacked or compromised, and relying on a physical key makes it easier to be stolen or lost than a password that exists in your head.

Rather than replacing passwords altogether, I'd rather see Two-Factor Authentication techniques improve (Google is probably the current master of this, with 5 methods of TFA: SMS, mobile app, secondary email, printable codes and a physical USB key) to ensure that the correct users are accessing the accounts and the correct users will retain access to their accounts.

NguynDung

by way i can receive my pass

iuLinh

Random pass may be ok