Y
Hacker News
new
|
ask
|
show
|
jobs
by
PakG1
3095 days ago
There are no good options until someone figures out a good alternative to passwords.
1 comments
exabrial
3095 days ago
'U2F + password' is very secure and can't be phished if implemented fully. However, even Google doesn't do U2F correctly :( U2F authentication needs to happen _every_ time a new TLS session is established in order to be 100% phish proof
link