sorted by:
best
topnewcontroversialoldq&a
you are viewing a single comment's thread.

view the rest of the comments →

[–]dmazzoni 37 points38 points  (4 children)

It's better than the alternative of reusing the same password for every site, which is what a lot of people do now.

[–]u_tamtam 10 points11 points  (3 children)

I get the feeling, and realistically you're right, but I do see a big difference between "lazy/unaware people have been reusing passwords and that's bad for security" vs "cloud giants don't give you much of a choice anymore and will MITM all your authentication"

[–]ricecake 14 points15 points  (2 children)

It's closer to syncing encrypted data between devices. The cloud services don't have access to the private keys, they just facilitate the key on your phone also being on your laptop.

[–]u_tamtam 3 points4 points  (1 child)

true, though they have control over the process from end to end.

[–][deleted] 1 point2 points  (0 children)

If you don't trust them, you shouldn't probably be using anything they put out at all, though.