• halfempty@kbin.social
    link
    fedilink
    arrow-up
    1
    arrow-down
    7
    ·
    9 months ago

    It seems that Passkeys generally require a biometric scan of some kind. I would prefer a level of privacy where I am not providing images of my face or fingerprints to unknown agencies on the cloud.

    • seang96@spgrn.com
      link
      fedilink
      English
      arrow-up
      17
      ·
      9 months ago

      Generally it should be stored in the security chip on the device so no one has access to it.

      • halfempty@kbin.social
        link
        fedilink
        arrow-up
        2
        arrow-down
        2
        ·
        edit-2
        9 months ago

        I could not find confirmation that biometrics are only stored on the device. In fact, I did see that iOS does at least part of the biometrics in it’s iCloud keychain.

        • henfredemars@infosec.pub
          link
          fedilink
          English
          arrow-up
          1
          ·
          9 months ago

          It’s way stronger than that. Android does not have access to your fingerprint data by design.

          Here’s documentation that describes the storage architecture which prevents Android from seeing your fingerprint data.

        • shortwavesurfer@monero.town
          link
          fedilink
          English
          arrow-up
          4
          ·
          9 months ago

          Maybe I am not quite understanding how this is going to work, but from what I understand, third-party password managers can integrate into this, and they would not require the biometrics to leave the device.