https://mstdn.social/@hkrn/116589985138352696
A decent article about enterprise depending on AI subscriptions and a discussion on hackernews.
It can be read. But you also have to physically tap the security key to do anything. If they don't get access to your security key the PIN alone is useless.
It's a security key meant to replace passwords with passkeys, but it does some other things as well.
The main thing which makes them secure is no one can export, read, copy the keys that are inside it, even if the PC is infected.
I also store a GPG key to encrypt / decrypt some sensitive stuff and a SSH key.
You can also use them as OTP replacement instead of using apps like google authenticator, aegis or whatever your choice is. It also makes it more secure. Though I don't think I will be doing that.
Main thing I bought it was for GPG and to secure my password manager. The good thing is because you have a security key your PIN can be significantly shorter than a password managers password and you don't sacrifice security. Nitrokey, for example, allows 8 tries to enter the FIDO2 (passkey) PIN. After 8 incorrect attempts it will block it and you will need to do a reset. Also people have to physically have your security key to even enter the PIN. So I simply have a 6 digit PIN code.
It doesn't come with a fingerprint scanner. Just have to tap to confirm the log in. Obviously , you set a PIN as well.
In total with shipping I paid 60 eur.
This looks great ! Thanks for sharing.
Your browser accepts cookies. Websites can write small files to your device that persist after you leave — files that identify you when you return, that follow you across sites, that remember what you looked at, what you almost bought, and how long you hesitated. We have not written one. Your browser would let this page write up to 10 GB to your device — a private room, ours alone, like the one given to every site you visit.
Hol up ... 10 GB?
"Assembled and tested in Poland" Costed 5 eur for 64 GB
They apparently also make RAM.
Yep, will be waiting for published third party security audit results and compliance reports. About open-source he said :
Correct! It's not open source and at least for the foreseeable future, I'm planning on keeping it closed. Like JG mentioned, because of internal audit requirements that I'll be going through in Visa and MC over the next few months, I need to ease that pain as much as possible. They treat open source finance products with increased scrutiny.
I switched to posteo. 1eur / month, does the job. Also use Thunderbird on mobile.
If people plan on switching my recommendation is not to do it all at once. Create the new email account and then slowly when you use accounts or buy something online point to the new account. It's also a good idea since you start a fresh email account to not give your email to just any random websites or services. For this I use firefox email relay that I also pay 1$ per month.
Being honest, it just sounds like western companies being upset that they don’t get to exploit cheap Chinese labor for the benefit of western capitalists.
They want to use China as a sweatshop that they profit from, rather than letting Chinese companies profit themselves.
I don’t really see the issue with it, as a consumer. I’d rather the origin of the product got to keep more of the proceeds rather than letting some western capitalist skim more off the top, especially if that means cheaper goods for consumers.
That's a really limiting way of seeing things. Not all companies are bad and not all of them want to EXPLOIT cheap labor just because they want to manufacture in China and there are companies (especially in Europe) that go the length of making sure that the products are made fairly (i.e Fairphone) and people are paid a livable wage. I think this will be more and more important as we go into the future and people become slowly more conscious of what they're buying.
That's why it's titled "It's a ticking time bomb for enterprise" not necessarily for AI companies.