Hacker News
new
|
past
|
comments
|
ask
|
show
|
jobs
|
submit
login
eyeareque
on Sept 9, 2022
|
parent
|
context
|
favorite
| on:
Apple’s Killing the Password. Here’s Everything Yo...
Does this passwordless future still involve getting a cookie in your browser that can be stolen and used from an attackers machine? If so, we still have a problem to fix.
madjam002
on Sept 9, 2022
|
next
[–]
AFAIK Token binding was designed to solve this problem, but was removed from Google Chrome for being too complicated for the benefits it brought.
Not sure if there is anything else in the works.
stavros
on Sept 9, 2022
|
prev
[–]
How would you propose doing sessions instead?
eyeareque
on Sept 9, 2022
|
parent
[–]
This seemed promising but it doesn’t look like it had any traction
https://www.rfc-editor.org/rfc/rfc8471
Consider applying for YC's Spring batch! Applications are open till Feb 11.
Guidelines
|
FAQ
|
Lists
|
API
|
Security
|
Legal
|
Apply to YC
|
Contact
Search:
