Mathstodon

gtbarryIf we want a passwordless future, let's get our passkey story straightPasskeys are based on public key cryptography, where two keys are paired. One key is public and can be shared with anyone, while the other is private and shared with no one.<a href="https://mastodon.social/tags/passkey" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#passkey</a> <a href="https://mastodon.social/tags/password" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#password</a> <a href="https://mastodon.social/tags/paswords" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#paswords</a> <a href="https://mastodon.social/tags/fido" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#fido</a> <a href="https://mastodon.social/tags/cryptography" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#cryptography</a> <a href="https://mastodon.social/tags/security" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#security</a> <a href="https://mastodon.social/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#cybersecurity</a> <a href="https://mastodon.social/tags/infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#infosec</a><a href="https://www.zdnet.com/article/if-we-want-a-passwordless-future-lets-get-our-passkey-story-straight/" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://www.zdnet.com/article/if-we-want-a-passwordless-future-lets-get-our-passkey-story-straight/</a>

🔘 G◍M◍◍T 🔘💡 Microsoft: nuovi account senza password e con passkey di default<a href="https://gomoot.com/microsoft-nuovi-account-senza-password-e-con-passkey-di-default/" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://gomoot.com/microsoft-nuovi-account-senza-password-e-con-passkey-di-default/</a><a href="https://mastodon.uno/tags/blog" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#blog</a> <a href="https://mastodon.uno/tags/fido" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#fido</a> <a href="https://mastodon.uno/tags/fido2" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#fido2</a> <a href="https://mastodon.uno/tags/microsoft" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#microsoft</a> <a href="https://mastodon.uno/tags/news" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#news</a> <a href="https://mastodon.uno/tags/password" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#password</a> <a href="https://mastodon.uno/tags/passwordless" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#passwordless</a> <a href="https://mastodon.uno/tags/picks" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#picks</a> <a href="https://mastodon.uno/tags/tech" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#tech</a> <a href="https://mastodon.uno/tags/tecnologia" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#tecnologia</a> <a href="https://mastodon.uno/tags/windows" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#windows</a>

Nate AllenI'm sure there is a simple, totally obvious reason (no trusted central authority problem?) but it seems kind of strange to me that the <a href="https://pdx.social/tags/Fediverse" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Fediverse</a> doesn't allow me to truly use a single login across services via some kind of <a href="https://pdx.social/tags/FIDO" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#FIDO</a> compliant magic, considering that almost everyone is an <a href="https://pdx.social/tags/infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#infosec</a> person and/or developer. Admittedly, I haven't thought about this too deeply. Also, where's passkey support? <a href="https://pdx.social/tags/saml" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#saml</a> <a href="https://pdx.social/tags/sso" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#sso</a>

Geoffrey GiebelhausWith 3G ending in <a href="https://mastodon.social/tags/Canada" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Canada</a> I'm being forced to upgrade my otherwise perfectly good phone 😭 Anyone have experience with the <a href="https://mastodon.social/tags/MotorolaG" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#MotorolaG</a> series? I've been looking at the Moto G Stylus and trying to decide if it's a worthy change up or if I'll be annoyed with a stylus or the somehow lower specs than my current phone... Currently rocking a <a href="https://mastodon.social/tags/OnePlus8T" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#OnePlus8T</a> for comparison. <a href="https://mastodon.social/tags/recommendations" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#recommendations</a> <a href="https://mastodon.social/tags/robelus" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#robelus</a> <a href="https://mastodon.social/tags/fido" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#fido</a>

Edwin G. :mapleleafroundel:Rogers to charge their customers (including Fido) $3/month for 2G and 3G access. It will not apply if the phone connects to 4G or 5G. Network to shutdown starting 31 July 2025.<a href="https://mobilesyrup.com/2025/04/07/rogers-fido-3g-fee-may/" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://mobilesyrup.com/2025/04/07/rogers-fido-3g-fee-may/</a> - - - Rogers facturera ses clients (incluant Fido) 3$/mois pour l’accès aux réseaux 2G et 3G. Cela ne s’appliquera pas si le téléphone se connecte à la 4G ou 5G. Le réseau commencera à fermer le 31 juillet 2025. // Article en anglais //<a href="https://mstdn.moimeme.ca/tags/Canada" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Canada</a> <a href="https://mstdn.moimeme.ca/tags/Rogers" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Rogers</a> <a href="https://mstdn.moimeme.ca/tags/Fido" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Fido</a>

The Grue<a href="https://mas.to/@TechConnectify" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@TechConnectify</a> Thank you so much for this video. I just watched it and it rings *every* bell. Mastodon is the only social network where I'm "active", apart from that I use <a href="https://digitalcourage.social/tags/RSS" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#RSS</a> feeds that I picked very well. I try to use my own brain. It was such a pleasure to listen to you, especially in times like these. Thank you once more. (But I miss good, ancient <a href="https://digitalcourage.social/tags/FIDO" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#FIDO</a>-net, I must admit)

David NelsonPeople who use hardware security keys: Storing them in geographically diverse locations is a wise move but makes it impossible to quickly onboard. How do you keep track of where you’ve registered each key? A checklist in a spreadsheet is obvious but cumbersome. Is there a better way? (Yes I use passkeys extensively but for certain services like email, iCloud, and my password manager, a hardware option is desirable if not mandatory.) <a href="https://mastodon.social/tags/YubiKey" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#YubiKey</a> <a href="https://mastodon.social/tags/YubiKeys" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#YubiKeys</a> <a href="https://mastodon.social/tags/FIDO" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#FIDO</a> <a href="https://mastodon.social/tags/FIDO2" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#FIDO2</a> <a href="https://mastodon.social/tags/FIDOKey" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#FIDOKey</a> <a href="https://mastodon.social/tags/FIDOKeys" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#FIDOKeys</a> <a href="https://mastodon.social/tags/Security" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Security</a>

Juergen M. Bruckner<a href="https://sueden.social/@red_rooster" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@red_rooster</a> Du kannst auch einen FIDO2 Stick verwenden - wo das halt geht.<a href="https://mastodon.bruckner.email/tags/fido" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#fido</a> <a href="https://mastodon.bruckner.email/tags/fido2" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#fido2</a> <a href="https://mastodon.bruckner.email/tags/opensource" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#opensource</a> <a href="https://mastodon.bruckner.email/tags/totp" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#totp</a> <a href="https://mastodon.bruckner.email/tags/security" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#security</a>

Claus Holm Christensen<a href="https://mastodon.social/@sarahjamielewis" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@sarahjamielewis</a> I would like to hear answers to that question as well. I have not tried it myself, but I'm considering <a href="https://mastodon.social/tags/Keycloak" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Keycloak</a> for something like that.I would also suggest the hashtags <a href="https://mastodon.social/tags/passkey" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#passkey</a> <a href="https://mastodon.social/tags/webauthn" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#webauthn</a> and <a href="https://mastodon.social/tags/fido" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#fido</a> to gather the attention of the right people?If you're ready to learn the technical details, then there is a Tour of WebAuthN here: <a href="https://www.imperialviolet.org/tourofwebauthn/tourofwebauthn.html" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://www.imperialviolet.org/tourofwebauthn/tourofwebauthn.html</a>

KEXP 🎶 #NowPlaying Bot🔊 <a href="https://mastodonapp.uk/tags/NowPlaying" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#NowPlaying</a> on <a href="https://mastodonapp.uk/tags/KEXP" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#KEXP</a>'s <a href="https://mastodonapp.uk/tags/Continent" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Continent</a>Fido: 🎵 Awolowo<a href="https://mastodonapp.uk/tags/Fido" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Fido</a> <a href="https://open.spotify.com/track/1136eJrkWsDvReASbjLTaU" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://open.spotify.com/track/1136eJrkWsDvReASbjLTaU</a>

LavX NewsUnlocking Security: The Best Physical Security Keys of 2025In an era where data breaches are rampant, physical security keys are becoming essential for safeguarding online accounts. This article dives deep into the top security keys available in 2025, evaluat...<a href="https://news.lavx.hu/article/unlocking-security-the-best-physical-security-keys-of-2025" rel="nofollow noopener noreferrer" target="_blank">https://news.lavx.hu/article/unlocking-security-the-best-physical-security-keys-of-2025</a><a href="https://mastodon.cloud/tags/news" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#news</a> <a href="https://mastodon.cloud/tags/tech" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#tech</a> <a href="https://mastodon.cloud/tags/Cybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Cybersecurity</a> <a href="https://mastodon.cloud/tags/YubiKey" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#YubiKey</a> <a href="https://mastodon.cloud/tags/FIDO" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#FIDO</a>

Tao of MacPasskey technology and its UsabilityThe “not (quite) ready for primetime” tag is eminently applicable here. (...)<a href="https://mastodon.social/tags/fido" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#fido</a> <a href="https://mastodon.social/tags/madness" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#madness</a> <a href="https://mastodon.social/tags/passkeys" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#passkeys</a> <a href="https://mastodon.social/tags/security" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#security</a> <a href="https://mastodon.social/tags/usability" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#usability</a> <a href="https://mastodon.social/tags/webauthn" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#webauthn</a><a href="https://taoofmac.com/space/links/2024/12/30/1400" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://taoofmac.com/space/links/2024/12/30/1400</a>

release_candidateSo, it has been like three months using FIDO/U2F keys instead of passwords. Both in my NetBSD and Arch systems.I use a "medium" quality password to decrypt the filesystems and other one to decrypt the password manager. And that's it.No password to log-in, to unlock screen, to run doas/sudo, etc. Just this little penguin and press its button.Also, I'm using this as 2FA for all websites that support it. Lemmy doesn't. It's the only place where I don't use it, yet.Because U2F uses the domain name, this is a strong protection against phishing. A similar domain may trick my eyes, but not the key.I'm very bad at memorizing passwords, and worse at typing them. Unlocking the screen without typing my password like 3 times is a bless.The problems: if my laptop is decrypted anybody with this penguin is root. It's kinda my Horcrux. Also, I need a second one stored safely as a backup.So I officially have two horcruxes. Destroy both and I can't log-in anywhere.<a href="https://mastodon.bsd.cafe/tags/fido" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#fido</a> <a href="https://mastodon.bsd.cafe/tags/u2f" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#u2f</a> <a href="https://mastodon.bsd.cafe/tags/infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#infosec</a> <a href="https://mastodon.bsd.cafe/tags/NetBSD" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#NetBSD</a> <a href="https://mastodon.bsd.cafe/tags/arch" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#arch</a> <a href="https://mastodon.bsd.cafe/tags/keepass" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#keepass</a> <a href="https://mastodon.bsd.cafe/tags/password" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#password</a> <a href="https://mastodon.bsd.cafe/tags/horcrux" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#horcrux</a>

Kayla Eilhart (en)For the last few months, I had a strange issue with my Fedora 40 installation which was driving me mad. When I had the computer running for some time, I couldn't use more than one browser, because the other couldn't even start or couldn't load websites. It was happening with Firefox and any other chromium based browser. It was unpredictable and nothing conclusive was visible in the logs and strace just showed it was waiting for something I had a hard time identifying. Then I installed Fedora 41 on a laptop and it started to happen immediately there - not just after some time, immediately! I took the laptop out from USB-C display to look at it in another room and it stopped. Then I vaguely remembered I put an U2F key to my screen's usb hub for convenience of use and the issues started some time after that. Yep. It was the key. When it's connected through the USB hub in my screen, the browsers somehow "battle" for it 🤦‍♀️ It's a normal USB-A U2F key by IDEM. Never heard about such issues, and the key is working normally when connected to the computer directly. <a href="https://gts.eilhart.cz/tags/justlinuxfun" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#JustLinuxFun</a> <a href="https://gts.eilhart.cz/tags/linux" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Linux</a> <a href="https://gts.eilhart.cz/tags/u2f" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#U2F</a> <a href="https://gts.eilhart.cz/tags/fido" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#FIDO</a> <a href="https://gts.eilhart.cz/tags/chromium" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Chromium</a> <a href="https://gts.eilhart.cz/tags/firefox" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Firefox</a> <a href="https://gts.eilhart.cz/tags/usb" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#usb</a>

chrysnPSA for <a href="https://chaos.social/tags/IdAustria" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#IdAustria</a> users: After a local attack on YubiKey devices (CVSS 4.9), A-Trust has delisted them from enrollment with ID-Austria via <a href="https://chaos.social/tags/WebAuthn" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#WebAuthn</a>. Apart from factually being an overreaction (they demand <a href="https://chaos.social/tags/FIDO" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#FIDO</a> Level 2 which scalable attacks, and that attack is neither), they have not reinstated those devices in the fixed revisions of the vendor; let's see if they'll see reason 🤔 <a href="https://www.yubico.com/support/security-advisories/ysa-2024-03/" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://www.yubico.com/support/security-advisories/ysa-2024-03/</a> <a href="https://a-trust.at/de/%C3%BCber_uns/newsbereich/20240905_de_post.html" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://a-trust.at/de/%C3%BCber_uns/newsbereich/20240905_de_post.html</a>

bertrand 🏃 👨‍💻 🎸<a href="https://epistolary.org/@vees" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@vees</a> I guess one reason is that if you have n passkeys, it takes one export/import operation to migrate from one passkey manager to another (yes, leaving passkeys in the legacy location), and it takes n operations to generate new passkeys (and requires n successful connections at a given time so definitely more prone to errors) <a href="https://piaille.fr/tags/fido" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#fido</a> <a href="https://piaille.fr/tags/Passkeys" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Passkeys</a>

Rob Carlson :ally: :BLM:The <a href="https://epistolary.org/tags/FIDO" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#FIDO</a> Alliance is working on the Credential Exchange Protocol to make <a href="https://epistolary.org/tags/Passkeys" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Passkeys</a> more portable or exportable, but why? Passkeys can and should be disposable. Your export path from one passkey manager to another should be the list of all the providers you need to generate. It's not like they take more than milliseconds to generate, and why set yourself up for a situation where valid keys are in multiple legacy locations?

release_candidateAfter some pam configs, I can use the USB keys to authenticate `login` and `doas` instead of password.<a href="https://mastodon.bsd.cafe/tags/u2f" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#u2f</a> <a href="https://mastodon.bsd.cafe/tags/pam" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#pam</a> <a href="https://mastodon.bsd.cafe/tags/fido" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#fido</a> <a href="https://mastodon.bsd.cafe/tags/fido2" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#fido2</a> <a href="https://mastodon.bsd.cafe/tags/NetBSD" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#NetBSD</a>

release_candidateI ordered two FIDO2 USB keys.I want to know how (in)convenient are they.If I can use them, I will have KeepassXC with passwords only, and a separated second factor.Plus, this second factor won't be as attractive as smartphones to thefts. So, less chances to lost it.I've read that a good strategy is to have a USB key for everyday use, and a second one stored in a safe place as a backup, just in case the primary one is lost or damaged.If I understood correctly what I've read, they will be compatible with NetBSD. One can only hope xD<a href="https://mastodon.bsd.cafe/tags/fido" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#fido</a> <a href="https://mastodon.bsd.cafe/tags/keepass" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#keepass</a> <a href="https://mastodon.bsd.cafe/tags/2fa" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#2fa</a> <a href="https://mastodon.bsd.cafe/tags/NetBSD" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#NetBSD</a> <a href="https://mastodon.bsd.cafe/tags/infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#infosec</a>

Avoid the Hack! :donor:New <a href="https://infosec.exchange/tags/FIDO" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#FIDO</a> proposal lets you securely move passkeys across platformsThe FIDO alliance has _finally_ presented something about transferring passkeys between custodians. This created the real possibility of vendor lock-in; especially if you wanted to switch devices or use a different custodian (I advocate for <a href="https://fosstodon.org/@bitwarden" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@bitwarden</a> because I am biased).This is subject to change, but great development news imo.<a href="https://infosec.exchange/tags/passkeys" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#passkeys</a> <a href="https://infosec.exchange/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#cybersecurity</a> <a href="https://www.bleepingcomputer.com/news/security/new-fido-proposal-lets-you-securely-move-passkeys-across-platforms/" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://www.bleepingcomputer.com/news/security/new-fido-proposal-lets-you-securely-move-passkeys-across-platforms/</a>

Recent searches

Search options

Administered by:

Server stats:

#fido