undefined | Better HN

0 pointstptacek6y ago0 comments

Unlikely. TOTP, Duo Push, and SMS are all more popular that U2F/WebAuthn.

0 comments

Yep. Those are still prone to phishing for a clever attacker and sleepy employee. For most users - that should be fine, but for the ones with the admin access to the nuclear reactor, U2F/FIDO2/WebAuthn probably worth the extra effort.

j / k navigate · click thread line to collapse

0 pointstptacek6y ago0 comments

Unlikely. TOTP, Duo Push, and SMS are all more popular that U2F/WebAuthn.

0 comments

eranation6y ago

Yep. Those are still prone to phishing for a clever attacker and sleepy employee. For most users - that should be fine, but for the ones with the admin access to the nuclear reactor, U2F/FIDO2/WebAuthn probably worth the extra effort.

j / k navigate · click thread line to collapse