Adversary-in-the-middle attacks can strip out the passkey option from login pages that users see, leaving targets with only authentication choices that force them to give up credentials.
Adversary-in-the-middle attacks can strip out the passkey option from login pages that users see, leaving targets with only authentication choices that force them to give up credentials.
Passkeys are so secure that it’s easier just to hack the page and not offer them as a login option, but that’s your takeaway and you got multiple upvotes? God help us.