Nah, password authentication or anything that transmits the full secret is beyond primitive.
Passkeys, client certificates, OTP never transmit the secret key.
With passkeys & client certificates, the server never has the secret key, so it can’t expose it.
Problems due to phone loss indicate bad practices.
Any decent password manager or vault service can manage cryptographic credentials of any kind.
Nah, password authentication or anything that transmits the full secret is beyond primitive. Passkeys, client certificates, OTP never transmit the secret key. With passkeys & client certificates, the server never has the secret key, so it can’t expose it.
Problems due to phone loss indicate bad practices. Any decent password manager or vault service can manage cryptographic credentials of any kind.