Saw this [article from The Verge](https://www.theverge.com/2022/8/31/23329373/dashlane-passkeys-password-manager?fbclid=IwAR2osU0FeCEN-NeEM1Mj6NJc2XLhWLbtsntT30hq7eqglghWh-k7iH6Wn94) that is very hyped about it. But it seems like a token is stored on a device, and presumably someone could steal the device and have the same benefits of having all your passwords. I don’t understand how having no passwords makes anyone’s data safer.
In: 2
For the record, unless your hard drives are fully encrypted, if a hacker has your physical device, you can basically consider it gone. At that point there is very little to nothing you can do without pretty hardcore security features that 99% of the public won’t use.
When the device is just a rotating token generator, you don’t have to worry too much because once the device is marked as stolen, those tokens won’t work anymore. Just like how if your credit card gets stolen, you can cancel it and not have to worry.
Latest Answers