HackerTrans
TopNewTrendsCommentsPastAskShowJobs

p0seidon

no profile record

Submissions

Fastest Worker Pool for Golang

github.com
1 points·by p0seidon·2 ay önce·0 comments

Opus 4.5

platform.claude.com
14 points·by p0seidon·8 ay önce·2 comments

Why Consumer Authentication Is Broken

corbado.com
3 points·by p0seidon·2 yıl önce·10 comments

Coinbase's Smart Wallet Security Flaws

corbado.com
3 points·by p0seidon·2 yıl önce·0 comments

B2C Authentication Is Broken: Here's Why

corbado.com
3 points·by p0seidon·2 yıl önce·0 comments

comments

p0seidon
·3 ay önce·discuss
This is incredible. I wonder when an LLM will pull this knowledge out to help someone down the line who would never have had the craft to pull this off, as it requires so much depth and broad skill. Admirable.
p0seidon
·4 ay önce·discuss
Would this yield exactly the same behavior when thinking about sub-agents and all this functionality?
p0seidon
·4 ay önce·discuss
When building, did you not have the thought or feeling that you would prefer the actual Claude Code and Codex harness to run, rather than just the SDKs also for your Agents?
p0seidon
·9 ay önce·discuss
Which post was that?
p0seidon
·11 ay önce·discuss
Enjoyed reading it
p0seidon
·2 yıl önce·discuss
This is such a well-written read, just so insightful and broad in its knowledge. I learned a lot, thank you (loved NT at that time - now I know why).
p0seidon
·2 yıl önce·discuss
This rant is utterly factless and at an absolute novice level. It is correct that building a passkey-first system (without fallbacks) is not possible today, but that's like going all in on Google Social login and then ranting about why not all users can access the system.
p0seidon
·2 yıl önce·discuss
Exactly, the average consumer is the most vulnerable in this landscape. Passkeys, in particular, seem like a promising solution to simplify authentication and protect average consumers. With better integration across platforms, could passkeys be the bridge that balances security and convenience for the 'average consumer' without requiring them to be privacy or tech experts? Most of them share much more valuable information in the cloud already (from privacy perspective)…
p0seidon
·2 yıl önce·discuss
You're right about the growing friction between security and user experience, especially with the increasing sophistication of threats. However, if we don’t move towards more seamless & secure authentication methods, won’t we risk stagnating in terms of security? The average consumer is at risk, the privacy-savvy user can avoid that easily, the question is how do we help the "average consumer"?
p0seidon
·2 yıl önce·discuss
It could be combined, there are solutions to that.
p0seidon
·2 yıl önce·discuss
I guess from a tech perspective, we can now create solid connections between clouds and consumer accounts without the need for social logins (device/cloud -> websites). We will be flying to Mars and have self-driving cars, yet we still have to juggle passwords and password managers.
p0seidon
·2 yıl önce·discuss
I think passkeys will bring us automatic authentication, where you can establish an automatic login with consent across all operating systems. The operating system would silently log you in the background. Do you think this could lead to privacy discussions, even if it adds security?
p0seidon
·2 yıl önce·discuss
On which two devices?
p0seidon
·2 yıl önce·discuss
That is the next interesting point. At the moment, you are right; there is no third-party password manager support on Windows. However, when they integrate synced passkeys, they might offer that. I think, until now, there has been no strategic value in leveraging access management for customers. Once you have a passkey in your cloud, you have a connection with a website forever (unless you revoke it). The future is an automatic login via passkeys (with user consent, of course).

What changed: Apple & Google want to enter deeper into customer connection and at the same time offer a more secure and convenient authentication for their customers.
p0seidon
·2 yıl önce·discuss
I am one of the Co-founders. We have heard from members of the FIDO2 community who are closer to Apple that this will probably happen. You are right that Apple could also be positioned more as a password manager on other platforms; we have considered this. However, this is not how most people currently perceive it.

Google releasing this functionality to production is relatively new for those outside the passkey community, although it is not surprising when following Chrome Dev.

Overall, the tendency of Apple and Google to focus on passkeys for consumers and make them accessible is an interesting angle. In our blog, we frequently discuss password managers; in fact, we are also 1Password customers. Passage is a part of 1Password that operates in the same field as we do, likely because they recognize a potential threat from Apple and Google in the consumer space.

For companies implementing passkeys this is quite a significant change, because now a Chrome can carry a passkey that used to be a cross-device case before. The ecosystem is getting more complicated...
p0seidon
·2 yıl önce·discuss
I think you are right for the moment; maybe now they will put in more effort?
p0seidon
·2 yıl önce·discuss
same
p0seidon
·2 yıl önce·discuss
This is 100% the reality
p0seidon
·2 yıl önce·discuss
> Also, if devs "want!" native components for React, Vue, etc., that does not mean Web components are bad, that only means devs want native components for their FW :).

You are right. For transparency, I also work for Corbado and was part of the discussion. I think most of the developers prefer a native component if they have a framework in use. In this case, because of the SSR trend, it's just a bit more difficult to use web components as a base for all of them. Would you not agree? Of course, you could offer native implementation in all variants, but that's very difficult.
p0seidon
·2 yıl önce·discuss
I love how this response corresponds to your profile description, and I mean that in a positive way, just to be clear.