mastodon.ar.al is one of the many independent Mastodon servers you can use to participate in the fediverse.
This is my personal fediverse server.

Administered by:

Server stats:

1
active users

Aral Balkan

Handing control of our biometric identities to a handful of trillion-dollar American gatekeeper corporations isn’t the good news you might think it is.

(Don’t forget, the W3C is the standards body of surveillance capitalism.)

In a non-corporate world, your “password” could be so much more… It could be, for example, a mnemonic for the key to a facet of your self that you (and you alone) own and control.

inkl.com/a/aRxNlETAxrA

inklApple, Microsoft, and Google are teaming up to eliminate passwordsGood news for the people still using "Password123!"
#w3c#fido#passwords

@aryak Can you try refreshing? I think their infrastructure is a bit pants. It’s loading for me now.

@aryak PS. Just wrote to them to tell them. It’s infuriating how badly their share links “work.” Will start looking for an alternative if that doesn’t improve. (Not that there are many.)

@aral > An error occurred in the application and your page could not be served. If you are the application owner, check your logs for details. You can do this from the Heroku CLI with the command

@aryak Ah, well, at least that sounds like incompetence, not foul play :)

@aral i thought the government blocked the website lol

@aral Aral what do you think about using biometrics but only locally? So, using it but having it never leaving your device? This is technically possible for some (if not all) use cases

@aral Good idea, instead of different passwords we will have one that we can not change as our face or fingerprint.

@aral I think FIDO allows that, right? Biometrics are just one possible way to gain local access to a key you then use to prove your identity to the server. I use my Yubikey, but I’d definitely struggle to convince most other people in my life to pay seventy-odd euro, so a phone-based solution is probably necessary

@aral I talked about this issue in a post for Purism recently. As you allude, the prime motivator for this move to the passwordless future is to anchor trust in these vendors so people are dependent on them for security. Passwords are one of the last areas where a person has some level of control over their own security in these ecosystems.

puri.sm/posts/microsoft-ruined

PurismMicrosoft Ruined Passwords, Now Aims for a Passwordless Future – PurismPurism makes premium phones, laptops, mini PCs and servers running free software on PureOS. Purism products respect people's privacy and freedom while protecting their security.