• @jj4211
    link
    6
    edit-2
    5 months ago

    Basically, you have:

    • TOTP - no particular investment needed, so very popular, but a bit onerous
    • Various MFA vendors that tie into their cloud services. I hate these since it means I generally have to get additional apps, with uneven platform support
    • Webauthn/Passkey - Cool, integration with my phone, a Fido usb key, windows hello if applicable, no need for external service, uses asymmetric encryption so it’s not shared secret and it’s more convenient… Almost no one bothers to implement it for their service though, despite it being pretty damn easy.
    • @[email protected]
      link
      fedilink
      English
      15 months ago

      I use Dashlane… It just handles all the user side of all of those for me, covering 2FA with the app/passkey nicely.