Makes sense! I know some business bank accounts require hardware keys.Good question, it's mostly some addition level of security and crossplatform compatibility. Apple keychain is not available for every platform and currently for Windows, it's not great, perhaps the next update will fix that.What's the benefit of a physical Yubikey over just using Apple's password manager or KeyPass?
Unless you are only logging into your account from home, it seems cumbersome to carry a little hardware key everywhere. And if you lose it, it would be even more of a hassle.
Passkey trades off some security for better backup and portability. However, it makes the keychain a point of attack. An attack vector would be to shoulder surf someone entering their pin when their face ID fails and then steal their phone. Once they have it, they can gain access to keychain and lock you out. The inconvenience of carrying an extra hardware key is by design. It makes the attack more difficult because of compartmentalization.
Statistics: Posted by NYCaviator — Mon Sep 16, 2024 10:55 am