Conversation

This Tweet is from a suspended account. Learn more
Replying to and
For Advanced Protection, the initial 2 security keys need to be physical standalone keys. Once you've set it up, you can add phones with hardware keystores as additional security keys. It's based around not wanting people to get very easily locked out of their accounts.
1
2
This Tweet is from a suspended account. Learn more
This Tweet was deleted by the Tweet author. Learn more
This Tweet is from a suspended account. Learn more
This Tweet is from a suspended account. Learn more
Replying to and
Yeah, it uses the phone's HSM as a proper security key including physical confirmation being required to authorize it being used. It's a real mess without Advanced Protection because there are so many 2FA methods including using phones as software 2FA rather than hardware 2FA.
1
This Tweet is from a suspended account. Learn more