Hacker News
new
|
past
|
comments
|
ask
|
show
|
jobs
|
submit
login
shim__
3 months ago
|
parent
|
context
|
favorite
| on:
The cryptography behind passkeys
You can but the server can require an device attestation during registration, proving that you're actually using an Yubikey or whatever. That isn't possible with TOTP
Guidelines
|
FAQ
|
Lists
|
API
|
Security
|
Legal
|
Apply to YC
|
Contact
Search:
