I'm not that enthusiastic about Google, Apple and Microsoft doing away with as an factor, because it's one of the few areas left on these platforms where people have some control over their own . puri.sm/posts/microsoft-ruined

That said, I understand why *they* would be enthusiastic to move people to authentication methods rooted in their hardware that make you (and other vendors that integrate with it) dependent on them for authentication.

Show thread

@kyle I'm guessing the companies prefer these other two factor approaches over an OpenPGP smart card precisely because the latter allows user-controlled keys?

@twrightsman They don't trust the user. They do trust the hardware *now* because they can control it remotely, can prevent unauthorized software from running. Combined with their keys inside the secure element, the user just provides minimal in-person proof it's them (biometrics) while hardware does the heavy lifting for trust.

Sign in to participate in the conversation
Librem Social

Librem Social is an opt-in public network. Messages are shared under Creative Commons BY-SA 4.0 license terms. Policy.

Stay safe. Please abide by our code of conduct.

(Source code)

image/svg+xml Librem Chat image/svg+xml