It is worth it if you will burn that good will by pushing for U2F in a situation where 2FA has already been in place and has proved sufficient for the current threat model, risk appetite and budget.
No, it is not "categorically false", that is just your opinion and I disagree. Let's just leave it here, we're just going in circles. 
-
-
Tavis, this is a popular experience for InfoSec pros in orgs where something is better than nothing. But you appear (maybe wrongly) to be denying this. I know what your argument is but it isn’t bein played out in the same universe as the majority of us. Surely you get this?
-
Frankly, "Surely you get this?" Doesn't read like you want a good faith discussion. Nevertheless, I will repeat (again again) that the issue here is that we do not have unlimited goodwill to burn, and cannot continually ask users to adopt new solutions to the same problems.
- 11 more replies
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.

