Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

Yeah, except physical devices get lost, stolen or damaged. So there needs to be some accounts recovery procedure/alternative auth mechanisms.


...and there are, and they're remarkably similar to what you do with Yubikeys: you have extra keys, and when you lose one, you uses the other to get in, and then you invalidate the old keys (although in the physical world, this means getting a new lock and a new set of keys, instead of just getting one new key and removing the lost key as a valid key).


Except you'd have to invalidate a yubikey on countless websites.


I mean, if you're using a key to get in to countless physical things, then you have the same problem.


Do you have countless homes?


I do not.

None of the locks for my home are on a network where you can broadcast key updates either.

I also tend not to have one key that can access my house, my car, my safety deposit box, my safe, my bike, my locker, etc.




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: