Embed Notice

HTML Code

<blockquote style="position: relative; padding-left: 55px;"><section><a href="https://not.acu.lt/notes/a7su1kvkbd">Ignas Kiela (ignaloidas@not.acu.lt)'s status on Thursday, 15-May-2025 23:03:36 JST</a><a href="https://not.acu.lt/@ignaloidas" title="ignaloidas@not.acu.lt"><img src="https://gnusocial.jp/avatar/5626-48-20220815212316.webp" width="48" height="48" alt="Ignas Kiela" style="position: absolute; left: 0; top: 0;">Ignas Kiela</a><div><a href="https://mstdn.io/@wolf480pl/114511521530300585" rel="in-reply-to">in reply to</a><ul><li><li><a href="https://gnusocial.jp/user/105501" title="quad@akko.quad.moe">Quad</a></li></ul></div></section><article><p><a href="https://mstdn.io/@wolf480pl">@wolf480pl@mstdn.io</a> <a href="https://akko.quad.moe/users/quad">@quad@akko.quad.moe</a> <br><br>Unless the RP is braindead stupid, you should be able to add multiple credentials to each one. That's the standard way to do things. Heck, I've seen a guy on HN say that he added "passkeys" from each of his devices to the services he logs into, even though they don't share it.<br><br>I have like 4 separate physical keys, with some in cold storage and stuff, and they all get registered on most of my logins. There's no other way to do stuff if you're using physical keys, even. So IMO having a key trapped in a TPM is almost zero disadvantages from usability side, and plenty of advantages from security side.</p></article><footer><a rel="bookmark" href="https://gnusocial.jp/conversation/5057660#notice-9915580">In conversation</a><time datetime="2025-05-15T23:03:36+09:00" title="Thursday, 15-May-2025 23:03:36 JST">about 2 days ago</time> <span>from <span><a href="https://not.acu.lt/notes/a7su1kvkbd" rel="external" title="Sent from not.acu.lt via ActivityPub">not.acu.lt</a></span></span><a href="https://not.acu.lt/notes/a7su1kvkbd">permalink</a></footer></blockquote>

Corresponding Notice

Embed this notice
Ignas Kiela (ignaloidas@not.acu.lt)'s status on Thursday, 15-May-2025 23:03:36 JSTIgnas Kiela
in reply to
- Wolf480pl
- Quad
@wolf480pl@mstdn.io @quad@akko.quad.moe

Unless the RP is braindead stupid, you should be able to add multiple credentials to each one. That's the standard way to do things. Heck, I've seen a guy on HN say that he added "passkeys" from each of his devices to the services he logs into, even though they don't share it.

I have like 4 separate physical keys, with some in cold storage and stuff, and they all get registered on most of my logins. There's no other way to do stuff if you're using physical keys, even. So IMO having a key trapped in a TPM is almost zero disadvantages from usability side, and plenty of advantages from security side.
In conversationabout 2 days ago from not.acu.ltpermalink

Public

Embed Notice

HTML Code

Corresponding Notice