[stinkytaco]

Are you using the ledger as a wallet? Doesn't plugging the device into an untrusted PC worry you at all? Leaving all that aside, the biggest issue for me an u2f is the mobile problem I have a yubikey neo, but u2f does not work over nfc, so I'm still stuck creating application passwords for things.

[DennisP]

The Ledger is designed to plug into an untrusted PC, that's the whole point. It's running secure hardware and never reveals the private key. It also has a display that tells you how much you're sending and to what address, so you're protected even if you have spyware that attempts to spoof those parameters.

According to Yubikey, "All YubiKey NEO devices manufactured as of February 10, 2015 supported the current FIDO U2F specification for NFC."

https://www.yubico.com/products/yubikey-hardware/yubikey-neo...

Maybe you have an older device? Or, if you have an iPhone, it's Apple that's the problem, since it restricts NFC to Apple's own payment system. With Android, NFC is available to any app.

[stinkytaco]

You're correct, but the implementation is limited. Chrome supports it, I think via Google Authenticator, but even their Gmail app doesn't support it directly. Nor does Dropbox, which are my primary two use cases. I highly doubt most other apps do either. The Google Authenticator support is a step, but it really needs to move to "enter password, tap token" in any app to really be useful.