Hacker News new | ask | show | jobs
by heyoni 808 days ago
But why won’t banks at least support customer provided yubikeys?
7 comments
mulmen 808 days ago
> But why won’t banks at least support customer provided yubikeys?

> support

You answered your own question.

link
heyoni 807 days ago
And that’s the answer isn’t it? Banks are behind the times in terms of security and tech.
link
intelVISA 808 days ago
Banks loathe anything relating, or adjacent, to good SWE principles.
link
ryukoposting 806 days ago
I'd guess part of the reason is that customers would blame the bank when their YubiKey doesn't work, which would become a nuisance for them as much as the YubiKey's usability issues are a nuisance for the customer.
link
jalk 807 days ago
Bank of America supports user purchased TOTP devices.

https://www.bankofamerica.com/security-center/online-mobile-...

link
rainbowzootsuit 807 days ago
Brokerage, not bank, but you can do Yubikey-only at Vanguard.

https://www.bogleheads.org/forum/viewtopic.php?t=349826

link
eru 808 days ago
Because it's extra hassle?
link
mlrtime 807 days ago
The largest US crypto brokerages/exchanges support yubikey.

Some will provide and require them for top customers to ensure they are safe.

link