A thing I just saw on the orange site: "WebAuthn seems to be designed by big businesses to take control of the authentication ecosystem."

-
-
I’m slow today because flu, but: it looks to me like everyone does OAuth and nobody has trouble implementing it; I think it’s actually TOO EASY to do OAuth.
-
(I spent a fair bit of time this year carefully auditing OAuth implementations that didn’t need to exist)
- Show replies
New conversation -
-
-
What does it help "entrench" outside of relying on the same TLS certificates that is already in use by the HTTPS connection which it piggybacks on?
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.