π By community request, you can now unlock your vault with a passkey,
-
By community request, you can now unlock your vault with a passkey, Available now in the web app and with Chromium-based browser extensions (rolling out this week).
https://community.bitwarden.com/t/unlock-with-fido2-passkeys/13224
Why passkeys?
Faster than typing your master password Phishing-proof: only work on originating websiteRequires a compatible PRF-capable setup
https://bitwarden.com/help/login-with-passkeys/#set-up-encryption-for-unlock
-
By community request, you can now unlock your vault with a passkey,
Available now in the web app and with Chromium-based browser extensions (rolling out this week).
https://community.bitwarden.com/t/unlock-with-fido2-passkeys/13224
Why passkeys?
Faster than typing your master password Phishing-proof: only work on originating websiteRequires a compatible PRF-capable setup
https://bitwarden.com/help/login-with-passkeys/#set-up-encryption-for-unlock
@bitwarden It would be ideal if my Firefox could function as a passkey vault; otherwise, it simply becomes another form of vendor lock-in by Apple.
The primary challenge with passkeys is the limited number of compatible vaults. -
@bitwarden It would be ideal if my Firefox could function as a passkey vault; otherwise, it simply becomes another form of vendor lock-in by Apple.
The primary challenge with passkeys is the limited number of compatible vaults.@kotaro Hi there, you can also store the passkey for your Bitwarden vault on a security key protected by pin.
-
@kotaro Hi there, you can also store the passkey for your Bitwarden vault on a security key protected by pin.
@bitwarden Nah, in that case I'd have to buy a YubiKey or something.
I can't keep the passkey for opening my Bitwarden vault inside Bitwarden itself.
But yeah, I'll admit that buying a FIDO hardware key for this is probably the best way to go for me. -
@kotaro Hi there, you can also store the passkey for your Bitwarden vault on a security key protected by pin.
@bitwarden @kotaro in that workflow wouldn't it then be the same as using a pin instead of a master password? If so what's the point?
-
@bitwarden @kotaro in that workflow wouldn't it then be the same as using a pin instead of a master password? If so what's the point?
Login and unlock with passkey provides more protection over pin for those concerned with vector attacks.
-
Login and unlock with passkey provides more protection over pin for those concerned with vector attacks.
@bitwarden yes, but I mean if it's a pin to unlock the passkey. And you are on the device with the passskey. Didn't you basically unlock it with the pin minus possibly clicking something to select the passkey? I do get passkeys are supposed to be more secure. Also that you all have one of the best implementations of them in general (the apple, google, microsoft single device/platform thing with theirs is a whole chunk of issues if you have multi device/platforms). I may be misunderstanding
-
@bitwarden yes, but I mean if it's a pin to unlock the passkey. And you are on the device with the passskey. Didn't you basically unlock it with the pin minus possibly clicking something to select the passkey? I do get passkeys are supposed to be more secure. Also that you all have one of the best implementations of them in general (the apple, google, microsoft single device/platform thing with theirs is a whole chunk of issues if you have multi device/platforms). I may be misunderstanding
@ppb1701 It depends on your threat model, a good example would be using a Yubikey nano that sits in your usb c slot, makes it quick to tap and enter pin.
In the post above, main comparison was vs master password rather than vs pin (not everyone wants to use the pin feature).
-
@ppb1701 It depends on your threat model, a good example would be using a Yubikey nano that sits in your usb c slot, makes it quick to tap and enter pin.
In the post above, main comparison was vs master password rather than vs pin (not everyone wants to use the pin feature).
@bitwarden ahhh
ok that makes sense, thanks for the explanation -
By community request, you can now unlock your vault with a passkey,
Available now in the web app and with Chromium-based browser extensions (rolling out this week).
https://community.bitwarden.com/t/unlock-with-fido2-passkeys/13224
Why passkeys?
Faster than typing your master password Phishing-proof: only work on originating websiteRequires a compatible PRF-capable setup
https://bitwarden.com/help/login-with-passkeys/#set-up-encryption-for-unlock
Why is this bit coming to mind?
(Brian Regan, safe for work and sensitive ears)
-
R ActivityRelay shared this topic
