> The discussion about what happens in big companies is completely unrelated to this discussion
It's not, in that they have plenty of technological solutions to address their security concerns. Passkeys don't make it easier.
> I don’t think we should create standards that make it easier for companies to erode user freedoms
We want some degree of security in many services (typically our bank). And we generally can't have it all. Security is a compromise.
> Security is a compromise.
To spell out the quote I allude to above, "give me liberty, or give me death!" We could eliminate a lot of bad things in the world if we were willing to give up freedoms.
Well intentioned but naive security researchers are constructing the very tools that will be used to by governments and corporations to restrict the rights and freedoms of users and I don't think we should stand for it.
> Well intentioned but naive security researchers
If you are still talking about passkeys, I kindly disagree. I feel like many well intentioned but naive people seem to complain about passkeys for reasons that are not justified, precisely because governments and corporations don't need at all passkeys to restrict the rights and freedoms of users. Passkeys won't make it easier for them, it's already easy.