• cashew@lemmy.world
    link
    fedilink
    English
    arrow-up
    11
    ·
    29 days ago

    It uses asymmetric cryptography. You sign a login request with the locally stored private key and the service verifies the signature with their stored public key. The PIN on your device is used to unlock access to the private key to sign the login request.

      • Spotlight7573@lemmy.world
        link
        fedilink
        English
        arrow-up
        10
        ·
        29 days ago

        Typically in most situations where a PIN is used on a modern device, it is not just the number you enter but some kind of hardware backing that is limited to the local device and also does things like rate limiting attempts.