Re: [webauthn] Recovering from Device Loss (#931)

@boppreh I find your statements kind of confusing...

> Unfortunately all the methods you listed either sacrifice privacy

You mean by providing an email/phone number to recover the account? Well, yeah, it's the convenient way to send you a recovery link. But all other alternative recovery options do not require any information.

> or require accessing the backup location/device during sign up

Well, not necessarily. You could add a second/third device to your account anytime, or print a QR code on a sheet of paper to put in your safe anytime. It's not necessarily upon registration.

> which is both dangerous

What is dangerous exactly?

> At minimum, I think a good recovery method (1) should reveal no private information; (2) can be stored somewhere secure like in a safe deposit box or with trusted friend;

Then you're the perfect candidate to print a QR code on a sheet of paper, put it in your friend's safe 🤣  

> (3) still allows me to create new accounts without opening the safe or asking the friend every time.

Well, you can always do that. Why would you need anything to "create a new account" ?!?

> This can be done, but has to be supported by the protocol. I'd rather disable the recovery method for my extra-sensitive accounts, than have no good recovery method on any account.

Well, you are in luck (🙄 ?), google, microsoft and apple do not only sync passwords in the cloud now, but also the private keys created with webauthn, that they dubbed "passkeys" ...there you go with your built-in recovery method, the big 3 simply have a copy of your keys. Whether you find this great or worrysome is up to you.

-- 
GitHub Notification of comment by dagnelies
Please view or discuss this issue at https://github.com/w3c/webauthn/issues/931#issuecomment-1345416705 using your GitHub account


-- 
Sent via github-notify-ml as configured in https://github.com/w3c/github-notify-ml-config

Received on Sunday, 11 December 2022 00:22:43 UTC