@rmondello@hachyderm.io
@rmondello@hachyderm.io avatar

rmondello

@rmondello@hachyderm.io

💚 Friend
🏳️‍⚧️ Trans, nonbinary, they/them
🔑 Pass{keys, codes, words} at Apple
🧛🏻‍♀️ It’s not a phase
🦔 Speedrunner

This profile is from a federated server and may be incomplete. Browse more on the original instance.

rmondello, to random
@rmondello@hachyderm.io avatar

It is quite the thing to present whatever this is as a privacy feature.

rmondello, to random
@rmondello@hachyderm.io avatar

When I say that passkeys are and will be interoperable, I’m extremely serious about it.

This year:

  • Chrome, Firefox, and other browsers on macOS can save and use iCloud Keychain’s passkeys (they need to adopt this)
  • Third-party password managers can participate in the ecosystem on iOS, iPadOS, and macOS
  • The passkeys from those third-party managers will also be usable by all web browsers

Here’s a thread with more information: https://hachyderm.io/@rmondello/110509448037547578

Please spread the word!

rmondello, to random
@rmondello@hachyderm.io avatar

‼️🔑 macOS Sonoma brings Apple’s password manager to Google Chrome, Microsoft Edge, and other browsers using their extensions stores with the “iCloud Passwords” browser extension.

You can AutoFill passwords and one-time codes, save new passwords, and right-click QR codes to set up code generators.

If you’re running the macOS Sonoma public or developer beta, you can try it right now!

Chrome: https://chrome.google.com/webstore/detail/icloud-passwords/pejdijmoenmkgeppbflobdenhhabjlaj
Edge: Coming soon.

[*] I am not breaking news here; this is public information.

Screenshot of Google Chrome on Mac with a Twitter login page. The iCloud Passwords extension is installed and there is an AutoFill suggestion for a one-time code.
Screenshot of Google Chrome on Mac with a GitHub Security settings page. The iCloud Passwords extension is installed and when right-clicking on the QR code, there’s a “Set up Verification Code” menu item.

rmondello, to random
@rmondello@hachyderm.io avatar

(Help me! Please boost!)

I’m trying to get my old apartment rented out! (I have several months left on the lease that I’m on the hook for if my landlord can’t find someone else to rent it.)

It’s super spacious and in San Jose, on the border of Cupertino. The commute to any Cupertino-based Apple office is 🍰. It’s walking distance to a Safeway. Has AC and in-unit washer/dryer. Ready for move-in immediately.

Please DM me any questions, and here is my landlord's listing: https://sfbay.craigslist.org/sby/apa/d/san-jose-luxurious-penthouse-condo-in/7699720128.html

rmondello, to random
@rmondello@hachyderm.io avatar

Please stop using “mom” as an example of an unsophisticated user of technology. This reinforces harmful stereotypes.

Instead, I suggest using “congressperson”.

rmondello, to random
@rmondello@hachyderm.io avatar

no matter what else I can say about 2023, Kissinger is still fucking dead

rmondello, to random
@rmondello@hachyderm.io avatar

The best feature ever is getting even better.

Source: https://www.apple.com/ios/ios-17-preview/

rmondello, to random
@rmondello@hachyderm.io avatar

Huge day for passkeys!

Starting today, you can set up a passkey for your Google account. At this stage of the industry-wide transition, setting up a passkey doesn’t invalidate your password, so it’s 100% safe to set up. https://blog.google/technology/safety-security/the-beginning-of-the-end-of-the-password/

rmondello, to random
@rmondello@hachyderm.io avatar

In the pursuit of knowledge, I will fuck around until I’ve found out all of the things.

rmondello, to random
@rmondello@hachyderm.io avatar

Passkeys will be importable and exportable, cross-device, and across passkey managers. They aren’t at this time, but they will be. It’s something that’s being defined and designed.

rmondello, to random
@rmondello@hachyderm.io avatar

A friend sent me a photograph of her holding up a mug that reads, “I am not afraid to be seen trying.”

What a beautiful sentiment.

rmondello, to random
@rmondello@hachyderm.io avatar

I used the “Curb” taxi app for the first time the other day. It required an account and that account had to be password-based.

My password manager generated a strong password that wasn't accepted by Curb. Fortunately, I remembered that I could contribute to Apple’s “Password Manager Resources” open source project to ensure nobody ever has this problem ever again. https://github.com/apple/password-manager-resources/pull/724/files

So if you ever have a password format compatibility problem, remember that you can contribute, too!

rmondello, to random
@rmondello@hachyderm.io avatar

feel like pure shit just want her back

rmondello, to random
@rmondello@hachyderm.io avatar

Yes, you heard that right! iOS 17 and macOS Sonoma add support for sharing passwords and passkeys in groups with friends and family.

  • share passkeys, passwords, verification codes, and notes
  • edits and updates seamlessly sync between group members
  • end-to-end encrypted
  • share with family, friends, and other close contacts
  • the password manager that’s built in to iPhone, iPad, and Mac is free to use and easy to switch to :)
rmondello, to random
@rmondello@hachyderm.io avatar

If you’re annoyed by those floaty prompts on websites to sign into them with your Google Account, you can turn them off for your Google account! Link: https://myaccount.google.com/u/0/permissions

rmondello, to random
@rmondello@hachyderm.io avatar

A big deal.

“Introducing passwordless authentication on GitHub.com
Passkeys are now available in public beta. Opting in lets you upgrade security keys to passkeys, and use those in place of both your password and your 2FA method.” https://github.blog/2023-07-12-introducing-passwordless-authentication-on-github-com/

rmondello, to random
@rmondello@hachyderm.io avatar

I don’t know who needs to hear this, but passkeys are a replacement for passwords — a step up in usability and security over passwords synced in a password manager. Passkeys are not phone-based security keys, or some other easy-to-lose, device-bound credential.

rmondello, to random
@rmondello@hachyderm.io avatar

Every new passkey adopter makes me smile, but Nintendo is special. I’m really happy to see this. https://en-americas-support.nintendo.com/app/answers/detail/a_id/62531

rmondello, to random
@rmondello@hachyderm.io avatar

Very exciting news! The Authentication Experience team at Apple, which brings you Apple’s contributions to passkeys, AutoFilling of one-time codes from Messages, Apple’s password manager, and more, is hiring a software engineer!

If you are interested, please apply through the website. The team is particularly interested in folks with strong SwiftUI skills, but folks with any and all backgrounds are encouraged to apply.

The role is in Cupertino, California. https://jobs.apple.com/en-us/details/200546861/authentication-experience-engineer?team=SFTWR

rmondello, to random
@rmondello@hachyderm.io avatar

iOS has an entire facility for third-party credential managers to plug into to be a data provider for passkeys.

Some third-party credential managers have instead decided to overwrite the JavaScript API in web browsers for passkeys and security keys, making it difficult for users to use the OS functionality, causing user experience havoc.

I’ve made my thoughts on this reckless behavior clear to them and will do what I can to fix this situation up. https://macaw.social/@april/111121055176419392

rmondello, to random
@rmondello@hachyderm.io avatar

‘Damn, Remember COVID?’ Says Woman Unaware She Has It Right Now https://reductress.com/post/damn-remember-covid-says-woman-unaware-she-has-it-right-now/

rmondello, to random
@rmondello@hachyderm.io avatar

> Aren’t passkeys just a more standardized two-factor auth?

Not quite. Forget about factors for a moment. Passwords are broken: they’re phishable, susceptible to server leaks, and almost all of them are weak and reused across websites because they’re created by people.

Passkeys directly addresses these security flaws while improving usability: humans don’t have to “create” them.

I explain passkeys in a 4 minute video segment here: https://developer.apple.com/videos/play/wwdc2022-102/?time=2638

https://social.seattle.wa.us/@brandonlivesin/111005603199723471

rmondello, to random
@rmondello@hachyderm.io avatar

Passkeys are the first shot we’ve realistically had as in industry at replacing passwords as the default credential on the web and in apps.

I am ecstatic about the momentum that they have.

Recently:

  1. google.com, icloud.com, and apple.com shipped support for signing in with passkeys
  2. iOS 17 shipped first-class support for third-party passkey managers plugging their data into all flows

And in November, maybe, Firefox will support passkeys, including iCloud Keychain’s! This is happening!

rmondello, to random
@rmondello@hachyderm.io avatar

It’s really telling to me that society sees students protesting as a problem that needs to be solved.

rmondello, to random
@rmondello@hachyderm.io avatar

Everyone coming into town for WWDC should be aware that the COVID risk in the area is extremely high right now. You’re not going to see me in any poorly-ventilated areas without a very high-quality mask. https://twitter.com/coviddatareport/status/1797717196048638318

  • All
  • Subscribed
  • Moderated
  • Favorites
  • JUstTest
  • mdbf
  • ngwrru68w68
  • InstantRegret
  • magazineikmin
  • thenastyranch
  • rosin
  • khanakhh
  • tacticalgear
  • Youngstown
  • slotface
  • Durango
  • kavyap
  • DreamBathrooms
  • provamag3
  • ethstaker
  • GTA5RPClips
  • modclub
  • tester
  • Leos
  • osvaldo12
  • cisconetworking
  • everett
  • cubers
  • normalnudes
  • anitta
  • megavids
  • lostlight
  • All magazines
    •