ph00lt0
commented
1 month ago It might be worth to mention that using hardware keys is inevitably more secure. While passkeys are a great thing, users who require high level security are beter of using a hardware key than a cloud synced and/or built-in SoC. One can store the passkey on a yubikey. If you secure the yubikey with biometrics and or pincode you keep having strong MFA and hardware-based security.
dngray
Affected page
https://www.privacyguides.org/en/os/android-overview/#advanced-protection-program
Description
The current Android overview page states that the Google Advanced Protection Program “is available at no cost to anyone with two or more hardware security keys with FIDO support.” This is no longer true, as users can now enable it with only a passkey. Though arguably less secure than using APP with a physical security key, a benefit of this is that it enforces the use of the passkey rather than allowing a fallback to any less secure verification methods a user may have registered.
Sources
https://blog.google/technology/safety-security/google-passkeys-advanced-protection-program/
Before submitting