this post was submitted on 30 Mar 2024

298 points (79.3% liked)

Technology

69912 readers

1918 users here now

This is a most excellent place for technology news and articles.

Our Rules

Follow the lemmy.world rules.
Only tech related news or articles.
Be excellent to each other!
Mod approved content bots can post up to 10 articles per day.
Threads asking for personal tech support may be deleted.
Politics threads may be removed.
No memes allowed as posts, OK to post as comments.
Only approved bots from the list below, this includes using AI responses and summaries. To ask if your bot can be added please contact a mod.
Check for duplicates before posting, duplicates may be removed
Accounts 7 days and younger will have their posts automatically removed.

Approved Bots

founded 2 years ago

MODERATORS

[email protected]

298

Proton Pass now supports passkeys on all devices and plans: Beating Bitwarden to mobile devices (proton.me)

submitted 1 year ago by [email protected] to c/[email protected]

170 comments fedilink hide all child comments

Passkeys are an easy and secure alternative to traditional passwords that can help prevent phishing attacks and make your online experience smoother and safer.

Unfortunately, Big Tech’s rollout of this technology prioritized using passkeys to lock people into their walled gardens over providing universal security for everyone (you have to use their platform, which often does not work across all platforms). And many password managers only support passkeys on specific platforms or provide them with paid plans, meaning you only get to reap passkeys’ security benefits if you can afford them.

They’ve reimagined passkeys, helping them reach their full potential as free, universal, and open-source tech. They have made online privacy and security accessible to everyone, regardless of what device you use or your ability to pay.

I'm still a paying customer of Bitwarden as Proton Pass was up to now still not doing everything, but this may make me re-evaluate using Proton Pass as I'm also a paying customer of Proton Pass. It certainly looks like Proton Pass is advancing at quite a pace, and Proton has already built up a good reputation for private e-mail and an excellent VPN client.

Proton is also the ONLY passkey provider that I've seen allowing you to store, share, and export passkeys just like you can with passwords!

See https://proton.me/blog/proton-pass-passkeys

#technology #passkeys #security #ProtonPass #opensource

(page 4) 28 comments

sorted by: hot top controversial new old

[–] [email protected] 20 points 1 year ago (14 children)

I have a question that is kind of off topic. If I use a password manager and generally use randomized secure passwords, do passkeys offer any additional security?

By practicing good password behavior, I have struggled to see how the benefits of passkeys out weigh the hassles.

load more comments (14 replies)

[–] [email protected] 52 points 1 year ago* (last edited 1 year ago) (8 children)

I really want to like Proton and all their shit, but they seem to heavily advertise everything they have on every software and product they have in a very intrusive and annoying way.

Simply logging into Proton mail and being bombarded by Proton promotional shit feels like Google all over again.

The app reminds me constantly that I'm a piece of shit for not supporting them by subscribing to their VPN, etc etc.

[–] [email protected] 38 points 1 year ago (7 children)

I would rather they make money from advertising their own pretty awesome services than from advertising unsustainable (environmentally, but also unsustainable for the fucking soul!) bullshit via blood sucking multinational tech companies that prey on the masses with whatever data they can automatically dig up on you. The revenue Proton makes from converting free customers to paid allows them to grow a freely available service that is a user-friendly and is a technical rival of the surveillance capitalists.

My take is:

If you're the sort of person that is convinced your requirements need some custom covert ops pagan voodoo self hosted data center in an old cold war era bunker, don't let me stop you. You crack right on mate and good luck (sounds like you need it!).
If you want the sorts of services Proton provides, but don't want to be fucked, then Proton are a good shout.
If you can afford it, pay for it. It makes the experience smoother and keeps a relatively small but decent company going in an ocean of massive cunts.
If you can't afford it and don't want to use the free version of Proton, I hear Google and Microsoft will happily buy your soul and sell your data.

load more comments (7 replies)

[–] [email protected] 21 points 1 year ago (5 children)

And yet I missed their announcement about their passkeys. In today's competitive world, I think any company that does not advertise in some way, is really not going to survive (as much as I don't like ads either). Maybe I don't see that much as I am paying.

[–] [email protected] 6 points 1 year ago (8 children)

I was getting these advertisements, even as a paid user, just before Christmas. Multiple other people have complained about it both here and on Reddit too. It seems to have gotten better now, but I know a few people have been quite turned off by this.

load more comments (8 replies)

load more comments (4 replies)

load more comments (6 replies)

[–] [email protected] 33 points 1 year ago* (last edited 1 year ago) (2 children)

all devices

Lies, there's no Linux app yet. As usual, Proton Inc continues to treat Linux users as third-class citizens, all whilst claiming they care about privacy and security.

Edit: They don't even have a macOS app yet lol.

[–] [email protected] 2 points 1 year ago (5 children)

I'm using the browser add-on in Linux across all my browsers. I do have the Bitwarden app for Linux, but to be honest I never open it as it is a pain to have to open a separate app, and then copy and paste. Isn't it just more seamless to let it replace the browser password manager on Linux? If I want to tidy up my Bitwarden vault, I also do that in the browser.

[–] [email protected] 17 points 1 year ago* (last edited 1 year ago) (1 children)

Passwords are used in more places than just browsers though. If there wasn't any need for a dedicated app, why did they bother making one for Windows?

But personally, I dislike Bitwarden as well. I prefer KeepassXC instead, as it works fully offline and I don't need to depend on a cloud-based provider (or spin up a server). The best part about KeepassXC is that it supports auto-typing credentials, so you don't need to copy-paste - and it works across a multitude of apps, such as remote desktop / terminal sessions.

[–] [email protected] 6 points 1 year ago (1 children)

I have the app and the browser extension. I usually open the extension and copy from there rather than use the app for things outside of the browser. It's just quicker.

[–] [email protected] 6 points 1 year ago

This is what I do as well. I always have Firefox running and can easily search the extension for whatever password I need and it is just as easy to copy from there as opening another tool.

That being said the iOS app is great for when I am away from my laptop.

load more comments (4 replies)

load more comments (1 replies)

[–] [email protected] 2 points 1 year ago (3 children)

I’m not 100% clear on the pricing. Do I get this for “free” as part of a premium subscription to Proton Mail/Drive/Calendar or is this a separate subscription?

[–] [email protected] 1 points 1 year ago

Probably best to see their comparison but free account mainly excludes Integrated 2FA authenticator and only has two vaults, but unlimited logins. I'm on the unlimited account (for VPN and mail) so can't check for sure.

[–] [email protected] 6 points 1 year ago

Free for everyone.

[–] [email protected] -3 points 1 year ago (5 children)

This is included in the premium subscription

[–] [email protected] -1 points 1 year ago (1 children)

Nice. Thx.

load more comments (1 replies)

load more comments (4 replies)

[–] [email protected] 31 points 1 year ago (1 children)

Vaultwarden is completely in my hands though

[–] [email protected] 5 points 1 year ago (2 children)

True, just hope they eventually get passkeys for mobile.

load more comments (2 replies)

[–] [email protected] 57 points 1 year ago (5 children)

Doesn't Bitwarden already have that feature? https://bitwarden.com/passwordless-passkeys/

[–] [email protected] 4 points 1 year ago* (last edited 1 year ago)

Seems that way? Although I can't seem to create a passkey somehow. Or is that how it works? Should I be able to create one on a free Bitwarden plan?

Edit: only on browser extension, got it.

[–] [email protected] 45 points 1 year ago (2 children)

Bitwarden currently only supports storing and using Passkeys via the browser extension. You cannot use them on mobile.

[–] [email protected] 15 points 1 year ago (1 children)

Ah I see. Hope to see it brought to mobile soon.

load more comments (1 replies)

[–] [email protected] 0 points 1 year ago* (last edited 1 year ago) (1 children)

I don't think it has the ability to export/share.

[–] [email protected] 3 points 1 year ago* (last edited 1 year ago) (1 children)

Like in a file?

Bitwarden already syncs between PC and phone.

load more comments (1 replies)

[–] [email protected] 5 points 1 year ago

I started using Strongbox on iPhone & Mac for passkey support Bitwarden is still there too, esp for PC, but I may move to an all KeePass setup.

load more comments