@hehemrin @dfri Claes’s argument that fraud would be reduced by using BankID less is not convincing. The alternative to BankID would be a password in most cases. Most people still reuse passwords, don’t use password managers, and don't use MFA on their email account that can be used for password resets. Passkeys might save humanity from that if Apple and Google stop inhibiting them, but the same authentication fatigue attributed as a BankID weakness applies equally to Passkeys. 🤔
@Jeremiah
I do not really have competence to comment your comment, but anyway... Isn't his theory (one of) that banking actions will be less secure when same authenticator is used for so much more incl low sensitive authentification situations? But I don't know it that is correct or not. Can BankID be less secure because it is used and needs to be adjusted so it can be adapted in many applications? Another risk, not directly in the article, that I see is that how vulnerable the 1/2
@dfri
@Jeremiah
society is if BankID system goes down, is compromised, hacked etc. Now FrejaID+ exist that to some extent is an alternative, but we still are extremely dependent on one application - and that application is almost only possible to use on Microsoft, Apple and Google softwares. Not to mention it's closed code.
Yeah, we'll see if Passkeys will be a great success!
Please, share more thoughts on your take on the opinion article in DN.
2/2
@dfri
https://etidning.dn.se/shared/article/sluta-utnyttja-bank-id-som-huvudnyckel-till-alla-las/vfTr4eLU