alt Hacker News> people use 2factor authentication and Passkeys without respecting the same truth.
Passkeys are still your keys. You can put them on hardware authenticators you control entirely offline separate of other services. You can store them in software vaults you manage.
that's not true. Passkeys have an optional remote attestation capability, which second parties can use to completely enforce aspects of your keys, such as them being non-transferrable or not usable without a screen touch etc.