I am considering changing to an open source smartphone. However there are some apps that I must have, like authenticator, mobile bank and government apps. Does anyone have any experience with any of these brands, what are they like and also is it possible to install android apps?
FIDO2/WebAuthn hardware tokens don’t use a code. That’s why they’re phishing resistant. You have to press a hardware token (usually plugged in via USB) to authenticate, but it doesn’t do anything obvious on the screen like type a code. On mobile, these tokens usually use NFC, so you just tap the Yubikey or whatever to the back of your phone.
Ah ok. Last time I had a hardware key it had a little display that showed numbers. I thought yubikey did the same thing.
That’s pretty cool. Ideally I’d get something like a yubikey to unlock my password manager, except I’m not sure how the yubikey is supposed to interact with a desktop computer, especially a shared/public one.
Oh yeah, I had one of those a long time ago for my PayPal account, before smartphones were widespread.
I’m using a Yubikey with my password manager (self-hosted Vaultwarden) and it works well! The Yubikey is a USB device - you can get it either as a USB-C or USB-A. It should work with any desktop PC as long as USB devices are allowed. I’ve got one on my keychain, and a second one stored somewhere safe. Good to have a spare one as a backup just in case the main one dies.