Oddbean new post about | logout
jb55 | 4 months ago (raw) | root | parent | reply | flag +1 
 https://developer.apple.com/passkeys/

https://developers.google.com/identity/passkeys

https://blog.google/technology/safety-security/the-beginning-of-the-end-of-the-password/
Water Blower | 4 months ago (raw) | root | parent | reply | flag 
 So a private key is stored locally on device and the corresponding public key is stored in the server.

That’s pretty much just Nostr sign-in.

The only difference is that passkey approach generates a new key for every app. It’s like using a different private key for every nostr client.
Kendy | 4 months ago (raw) | root | parent | reply | flag 
 Sounds like a massive difference. A compromised nsec would be catastrophic.
Water Blower | 4 months ago (raw) | root | parent | reply | flag +1 
 Yes. This discussion has changed my attitude towards Nostr Signin/Connect