Google is looking to make passwords obsolete by prompting users to create passkeys to unlock accounts and devices with a fingerprint, face scan or pin number.
Is anyone working on bootstrapping passkey access to fresh Linux boxen? Until that is practical, I will probably be skeptical on this. That is, I know how to compartmentalize my passwords, but I don't know how to compartmentalize Google's control over my access to things.
This is an alternate expression of the "how do I recover when I lose my phone?" question that has always so far lead back to using symmetric passwords to protect private keys... which isn't ideal but is at least practical.
I didn't mean after you logged in... I meant as the default login option to a new Linux box. Passkeys are strong because they are asymmetric, but we currently fall back on symmetric passwords to manage access to those inconveniently-large private keys. How will you reset your Google access if your computer hard disk dies or your phone drops into the ocean if Google will no longer allow passwords? I figure that independence from big brother and fault tolerance to hardware failures would be appropriately-robust if this great new approach could work offline bootstrapping the security of a new computer.
No more than they already can through passwords. Passkeys are a generalized authentication standard, you can use it with any compatible software (not just Google products). More options are a good thing.