andrewhy t1_j839gc8 wrote on February 11, 2023 at 8:30 AM

Maybe passwords are a terrible way of authenticating users, and we need to move towards something else. Even two-factor authentication is an improvement. I dunno about you, but I have more passwords than I can keep track of, and the alternatives to using a password manager are much worse, such as reusing passwords. A single compromised username/password that is reused elsewhere can lead to you being hacked.

newprince t1_j85lkpw wrote on February 11, 2023 at 8:21 PM

There are actual protocols that attempt to do away with most passwords, such as OpenID. The problem though becomes adoption. It is very easy to rely on the classic Web 2.0 login/password implementation

Deckma t1_j86vijy wrote on February 12, 2023 at 2:08 AM

Passkeys are something a few vendors are getting behind.

https://fidoalliance.org/passkeys/