|
|
|
|
|
|
by pid-1
1485 days ago
|
|
|
After buiyng a Yubikey and using it for like one year, I now use 1Password to manage all my MFA. It can work like Google Authenticator (using OTP), except it's not tied to a single device. Not as safe as Yubikey, but likely a good compromise between security and user stupidity protection. Also: - 1Pw blocks itself after a few min without use. - Installing 1Pw for the first time in a device is a bit more bureaucratic than a simple login. I really think any MFA needs something to protect users from forgetting stuff to be successful. Even if it's something stupid like going physically to a store. I can't stand the idea that by loosing my two keys I will loose access to all my things and there's no one who can help me. |
|
|
If one is leaked or accessed, so is the other.
It only really provide protection against the most basic / passive MITM attacks.