Hacker News new | ask | show | jobs
by shelbyfinally 3531 days ago
It's Yubikey.

Google Authenticator doesn't do any kind of push notification when you log in. Each endpoint uses a shared secret (the server and the mobile app share that secret beforehand) to generate a time-limited code.
2 comments
ryanobjc 3531 days ago
Actually I was talking about another method:

http://lifehacker.com/google-prompt-lets-you-use-two-factor-...

Essentially its like 2 factor auth, except you arent conveying codes from your phone to the computer.

This is a nice feature because it is a lot more user friendly than normal 2fa, it's free if you have a smart phone and well, it works.

link
kbar13 3531 days ago
op isn't talking about totp, it's the push notification you get when you log in on a new device (the "review your recent login" notification)
link
askmike 3531 days ago
op is talking about "Google prompt".

See here: http://arstechnica.com/gadgets/2016/06/googles-new-two-facto...

link
kbar13 3531 days ago
oh nice, that's even better
link