Apple’s version of passkeys are the latest piece of a sprawling identity picture for the Apple platform that isn’t widely supported just yet - which is a perfect time to start learning about it. Passkeys aren’t just Apple; they’re supported on Mac, Windows, Android, and even in our browsers. This evolution in WebAuthn's capabilities means we don’t need physical tokens (although that’s still an option) to have a second factor in auth flows - nor is that other factor tied to a phone number, making it more secure. But for admins, there are plenty of questions we need to figure out. What do we have instead of a username and what is there in lieu of a password? As we develop solutions that work with webauthn, we often use a reference implementation at webauthn.io to test functionality. Our guest today is one of the people behind that site, Matt Miller.
Guests:
Matthew Miller - @iamkale@infosec.exchange
Transcript:
Click here to read the transcript (brought to you this week by Alectrona)
Links:
Sponsors:
If you're interested in sponsoring the Mac Admins Podcast, please email podcast@macadmins.org for more information.
Get the latest about the Mac Admins Podcast, follow us on Twitter! We're @MacAdmPodcast!
The Mac Admins Podcast has launched a Patreon Campaign! Our named patrons this month include Weldon Dodd, Damien Barrett, Justin Holt, Chad Swarthout, William Smith, Stephen Weinstein, Seb Nash, Dan McLaughlin, Joe Sfarra, Nate Cinal, Jon Brown, Dan Barker, Tim Perfitt, Ashley MacKinlay, Tobias Linder Philippe Daoust, AJ Potrebka, Adam Burg, & Hamlin Krewson