It seems that Passkeys generally require a biometric scan of some kind. I would prefer a level of privacy where I am not providing images of my face or fingerprints to unknown agencies on the cloud.
I could not find confirmation that biometrics are only stored on the device. In fact, I did see that iOS does at least part of the biometrics in it’s iCloud keychain.
Maybe I am not quite understanding how this is going to work, but from what I understand, third-party password managers can integrate into this, and they would not require the biometrics to leave the device.
It seems that Passkeys generally require a biometric scan of some kind. I would prefer a level of privacy where I am not providing images of my face or fingerprints to unknown agencies on the cloud.
Generally it should be stored in the security chip on the device so no one has access to it.
The biometrics are on device just like your fingerprint scans stay on device to use your reader.
I could not find confirmation that biometrics are only stored on the device. In fact, I did see that iOS does at least part of the biometrics in it’s iCloud keychain.
It’s way stronger than that. Android does not have access to your fingerprint data by design.
Here’s documentation that describes the storage architecture which prevents Android from seeing your fingerprint data.
There’s a chance I’m thinking of third-party password managers like keepass or 1password.
Lol, you think Google would actually not use that.
Maybe I am not quite understanding how this is going to work, but from what I understand, third-party password managers can integrate into this, and they would not require the biometrics to leave the device.
Introducing aegis authenticator and lineageOS