|
|
|
|
|
|
by forward1
980 days ago
|
|
|
Passwordless authentication > hardware-backed MFA > TOTP/HOTP MFA > SMS MFA > no MFA The reason being is the secret used to authenticate you is non-portable (since it's based on asymmetric crypto, it doesn't need to be shared). On the other hand, portable credentials, like TOTP/HOTP code AND passwords are responsible for almost all compromise today. Bearer token based authentication will always be inferior to FIDO/U2F - it's not even the same ballgame. |
|
|