My current explanation of security keys is not optimal: “imagine a $20 thumb drive that when you lose it locks you out of your email”
-
-
But TOTP still provides equivalent access to my account, is possible to phish, and I'll still be using it on mobile = my confusion
-
Could argue it reduces attack surface slightly. But which threat model is this securing against? I don't see value > inconvenience
- Show replies
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.