SahAssar
5 months ago
These sort of articles should definitely mention webauthn/passkeys. It's the only solution that actually solves these (including phising) problems.
witrak
5 months ago
Until there are no unified, standard solutions this is too difficult to be achieved in practice.
SahAssar
5 months ago
There is a standard solution, it works well. What is still being worked on is portability, but if you are securing your most important stuff (banking, email) then passkeys are definitely workable without portability since if you switch ecosystems you can sign in with the old ecosystem and register the new one.