You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
The end result would be users could login via either:
their master password (as is the status quo)
their passkey, which would perform usual FIDO2 auth, but also use the hmac-secret functionality to derive a symmetric key to decrypt the encrypted master password (stored on the server)
The benefit is that passkeys are phishproof (due to mutual auth) and are 1-click login.
Users that prefer to solely use passwords are unimpacted.
The text was updated successfully, but these errors were encountered:
It'd great if etesync supported passwordless login via Passkeys, in the same way that Bitwarden can do, as described in https://bitwarden.com/blog/log-into-bitwarden-with-a-passkey/
The end result would be users could login via either:
The benefit is that passkeys are phishproof (due to mutual auth) and are 1-click login.
Users that prefer to solely use passwords are unimpacted.
The text was updated successfully, but these errors were encountered: