Passkey Demo - duplicate entries and lacking details.

Super Contributor

3 years ago

I thought we were past the days of security through obscurity. Though, I do see how a user might be tricked into exposing their private key. But, other than the private key, is there any reason the rest of the details could not be exposed? e.g. negotiated algorithm, params, etc. Certainly the public key is meant to be exposed.

If the private key must be obscured, it could at least be exposed as a hash of the value? e.g. titled "Hash of Private Key"

And again, I expect that we will be able to Export/Import all the details in clear text. "Your data is yours." https://support.1password.com/1pux-format/ This would still be prone to phishing.

Maybe a pop-up that warns and educates the user would be useful (when the attempting certain functions).

Thanks for you patience. I look forward to seeing the final implementation.

Forum Discussion

Passkey Demo - duplicate entries and lacking details.

Featured discussions

November at 1Password: the Access-Trust gap, planning your estate, and an updated unlock experience

Recent discussions

Need a PDF viewer please!

Emergency access - people I trust that may ask to access my account in case of an emergency

Date format is incorrect in 1Password for iOS

How to add an android app to "Passwords" category

Universal Autofill Stopped Working for Safari in macOS 15.7.2