HN Reader

Self-hosted x86 back end is now default in debug mode (ziglang.org)

218 points by brson 11h ago 113 comments

Why Android can't use CDC Ethernet (2023) (jordemort.dev)

255 points by goodburb 13h ago 104 comments

Tracking Copilot vs. Codex vs. Cursor vs. Devin PR Performance (aavetis.github.io)

175 points by HiPHInch 4d ago 91 comments

Riding high in Germany on the world's oldest suspended railway (theguardian.com)

106 points by pseudolus 10h ago 41 comments

Finding Shawn Mendes (ericneyman.wordpress.com)

11 points by jzwinck 2h ago 1 comments

I used AI-powered calorie counting apps, and they were even worse than expected (lifehacker.com)

92 points by gnabgib 10h ago 67 comments

Omnimax (computer.rip)

128 points by aberoham 13h ago 33 comments

FSE meets the FBI (blog.freespeechextremist.com)

272 points by 1337p337 8h ago 35 comments

Administering immunotherapy in the morning seems to matter. Why? (owlposting.com)

172 points by abhishaike 17h ago 124 comments

The wire that transforms much of Manhattan into one big, symbolic home (2017) (atlasobscura.com)

82 points by rmason 13h ago 145 comments

Endangered classic Mac plastic color returns as 3D-printer filament (arstechnica.com)

126 points by CobaltFire 4d ago 23 comments

Panjandrum: The ‘giant firework’ built to break Hitler's Atlantic Wall (bbc.com)

106 points by rmason 4d ago 89 comments

My first attempt at iOS app development (mgx.me)

156 points by surprisetalk 4d ago 90 comments

Kagi Reaches 50k Users (kagi.com)

338 points by tigroferoce 5h ago 176 comments

Enterprises are getting stuck in AI pilot hell, say Chatterbox Labs execs (theregister.com)

44 points by dijksterhuis 4h ago 18 comments

Forests offset warming more than thought: study (news.ucr.edu)

119 points by m463 5h ago 29 comments

Gaussian integration is cool (rohangautam.github.io)

170 points by beansbeansbeans 1d ago 31 comments

Software Is About Promises (bramadams.dev)

34 points by _bramses 10h ago 7 comments

Startup Equity 101 (quarter--mile.com)

126 points by surprisetalk 4d ago 64 comments

Show HN: Let’s Bend – Open-Source Harmonica Bending Trainer (letsbend.de)

99 points by egdels 18h ago 24 comments

Joining Apple Computer (2018) (folklore.org)

419 points by tosh 1d ago 117 comments

The Illusion of "The Illusion of Thinking" (seangoedecke.com)

10 points by jonbaer 3h ago 1 comments

What happens when people don't understand how AI works (theatlantic.com)

57 points by rmason 13h ago 64 comments

Generating Pixels One by One (tunahansalih.github.io)

47 points by cyruseption 4d ago 1 comments

Self-Host and Tech Independence: The Joy of Building Your Own (ssp.sh)

458 points by articsputnik 1d ago 215 comments

Cheap yet ultrapure titanium might enable widespread use in industry (2024) (phys.org)

89 points by westurner 4d ago 63 comments

The last six months in LLMs, illustrated by pelicans on bicycles (simonwillison.net)

812 points by swyx 1d ago 203 comments

Web designs are getting too complicated (websmith.studio)

61 points by parkcedar 5h ago 48 comments

Building supercomputers for autocrats probably isn't good for democracy (helentoner.substack.com)

304 points by rbanffy 13h ago 170 comments

How to get started with writing tech video essays

49 points by sonderotis 4d ago 16 comments

How Compiler Explorer Works in 2025 (xania.org)

163 points by vitaut 4d ago 25 comments

FAA to eliminate floppy disks used in air traffic control systems (tomshardware.com)

102 points by daledavies 1d ago 126 comments

<Blink> and <Marquee> (2020) (danq.me)

215 points by ghssds 1d ago 170 comments

Analyzing IPv4 Trades with Gnuplot (ipv4a-5539ad.gitlab.io)

45 points by todsacerdoti 9h ago 10 comments

Building an AI server on a budget (informationga.in)

133 points by mful 3d ago 82 comments

Binfmtc – binfmt_misc C scripting interface (netfort.gr.jp)

94 points by todsacerdoti 21h ago 24 comments

Poison everywhere: No output from your MCP server is safe (cyberark.com)

124 points by Bogdanp 12h ago 59 comments

Coventry Very Light Rail (coventry.gov.uk)

195 points by Kaibeezy 1d ago 258 comments

Launching the BeOS on Hitachi Flora Prius Systems (1999) (testou.free.fr)

48 points by doener 19h ago 16 comments

Field Notes from Shipping Real Code with Claude (diwank.space)

310 points by diwank 1d ago 90 comments

Efficient mRNA delivery to resting T cells to reverse HIV latency (nature.com)

93 points by matthewmacleod 4d ago 18 comments

Focus and Context and LLMs (taras.glek.net)

77 points by tarasglek 1d ago 42 comments

There's not much point in buying Commodore (oldvcr.blogspot.com)

17 points by zdw 12h ago 1 comments

OpenBSD IO Benchmarking: How Many Jobs Are Worth It? (rsadowski.de)

29 points by PaulHoule 11h ago 4 comments

tcpulse: A TCP/UDP load generator that provides fine-grained, flow-level control (github.com)

16 points by y_uuki 12h ago 0 comments

Rkyv (archive) is a zero-copy deserialization framework for Rust (rkyv.org)

12 points by ChadNauseam 15h ago 0 comments

Low-Level Optimization with Zig (alloc.dev)

298 points by Retro_Dev 2d ago 194 comments

Ask HN: How to learn CUDA to professional level

213 points by upmind 23h ago 74 comments

Why We're Moving on from Nix (blog.railway.com)

268 points by mooreds 1d ago 128 comments

The time bomb in the tax code that's fueling mass tech layoffs (qz.com)

1496 points by booleanbetrayal 4d ago 923 comments

NIST on Cloning of Authentication Keys

4 mooreds 3 5/7/2025, 10:34:53 PM pages.nist.gov ↗

Comments (3)

evanjrowley · 32d ago
Look for Appendix B. Syncable Authenticators: https://pages.nist.gov/800-63-4/sp800-63b.html#appB

Interesting they feel comfortable using WebAuthn for Authenticator Assurance Level 2. It does seem like the right middle-ground for an exportable private key.

They referenced WebAuthn quite a bit in Appendix B. I'm surprised the FIDO Alliance's Credential Exchange Format/Protocol was not mentioned: https://fidoalliance.org/specifications-credential-exchange-...

I haven't taken a deep dive on it, but I wonder if those FIDO Alliance specifications would meet/support NIST's AAL2 criteria for WebAuthn.

mooreds · 32d ago
Thanks. I didn't notice that the anchor tag got stripped from the submission. Thanks for adding that link in the comment.
gnabgib · 32d ago
This isn't the title (NIST Special Publication 800-63B.. yeah NIST docs aren't very accessibly named), nor the intent of this document.

> This document provides requirements to credential service providers (CSPs) for remote user authentication at each of three Authentication Assurance Levels (AALs).