Since Zero Knowledge Password Proofs have existed for awhile why do we need password logins for everything?
@abucci@anthony.buc.ci yeah, that would be great for a more secure digital life. Perhaps not easier at the start but easier with time.
Last year I wrote a bit on the subject, trying to put all interests together and aiming for a transition into a passwordless standard… We could start with our services tho
wow, I’m reading it again and it has a lot of spelling errors. Rather than that, I still have those ideas, if anyone here wants to discuss the topic.
ah, I recall that after writing that text I implemented a proof of concept for passwordless login on Webauthn/passkeys.io which has worked well for me, I haven’t tested with more users so I don’t know how well it’ll be received.
I guess most mainstream browsers will follow that path.
@abucci@anthony.buc.ci yeah, I agree. It should be flexible and the used should choose the best set of advantages and disadvantages.
@abucci@anthony.buc.ci here is an updated implemeation
https://blog.cloudflare.com/opaque-oblivious-passwords/
I played with it a bit, and it works
@abucci@anthony.buc.ci have you seen https://en.m.wikipedia.org/wiki/SQRL ?
It’s too indie and I’d say unknown, but the native plug-ins worked well on mobile and Web browsers. And it’s an experience more like you mention.