[ PFIR ] Google is making their weak and flawed passkey system the default login method -- I urge you NOT to use them!

Tue, 10 Oct 2023 08:09:22 -0700 


Google is making their weak and flawed passkey system the default login method 
--
I urge you NOT to use them!

Google continues to push ahead with its ill-advised scheme to force
passkeys on users who do not understand their risks, and will try push
all users into this flawed system starting imminently.

In my discussions with Google on this matter (I have chatted multiple
times with the Googler in charge of this), they have admitted that
their implementation, by depending completely on device authentication
security which for many users is extremely weak, will put many users
at risk of their Google accounts being compromised. However, they feel
that overall this will be an improvement for users who have strong

authentication on their devices. 


And as for ordinary people who already are left behind by Google when
something goes wrong? They'll get the shaft again. Google has ALWAYS
operated on this basis -- if you don't fit into their majority silos,
they just don't care. Another way for Google users to get locked out
of their accounts and lose all their data, with no useful help from
Google.

With Google's deficient passkey system implementation -- they refuse
to consider an additional authentication layer for protection --
anyone who has authenticated access to your device (that includes the
creep that watched you access your phone in that bar before he stole
it) will have full and unrestricted access to your Google passkeys and
accounts on the same basis. And when you're locked out, don't complain
to Google, because they'll just say that you're not the user they're

interested in. 


"Thank you for choosing Google."

- - -
--Lauren--

Lauren Weinstein 
[email protected] (https://www.vortex.com/lauren)

Lauren's Blog: https://lauren.vortex.com
Mastodon: https://mastodon.laurenweinstein.org/@lauren
Pebble (formerly T2): https://pebble.is/laurenweinstein
Twitter: https://twitter.com/laurenweinstein
Founder: Network Neutrality Squad: https://www.nnsquad.org
        PRIVACY Forum: https://www.vortex.com/privacy-info
Co-Founder: People For Internet Responsibility
Tel: +1 (818) 225-2800
_______________________________________________
pfir mailing list
https://lists.pfir.org/mailman/listinfo/pfir














    











					Reply via email to