What about server-generated passwords, like API keys? That would solve the main ... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		Flimm 5 months ago \| parent \| context \| favorite \| on: Emailing a one-time code is worse than passwords What about server-generated passwords, like API keys? That would solve the main problem with passwords, namely, that people reuse the same weak password everywhere. I doubt it would be as popular as user-selected passwords, but I still wonder why no website has tried it.

dchest 5 months ago [–]

How is that different from a passkey's private key, apart from being less secure?

It's literally something like

  hnkTKS7h2WCOBr3CxSKM51cSVKSkiKOSlQsMhtRZ0CU

stored in the password manager.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact