This isn’t strictly a privacy question as a security one, so I’m asking this in the context of individuals, not organizations.

I currently use OTP 2FA everywhere I can, though some services I use support hardware security keys like the Yubikey. Getting a hardware key may be slightly more convenient since I wouldn’t need to type anything in but could just press a button, but there’s added risk with losing the key (I can easily backup OTP configs).

Do any of you use hardware security keys? If so, do you have a good argument in favor or against specific keys? (e.g. Yubikey, Nitrokey, etc)

  • UnfortunateShort@lemmy.world
    link
    fedilink
    arrow-up
    5
    arrow-down
    1
    ·
    8 months ago

    I want to add that you can not only use USB keys as second factors, but also as a password replacement on Linux and Windows. It is extremely convenient to press a button instead of typing a 16 character pw.

    • sugar_in_your_tea@sh.itjust.worksOP
      link
      fedilink
      arrow-up
      2
      ·
      edit-2
      8 months ago

      Yup, my computers use full disk encryption and have long passwords (>15 characters). And those passwords are different from my login passwords. I find myself not shutting down as often because it’s a pain to log back in.

      So they’re cost competitive with Google Titan. I would go with the Yubikey in this case since they have a stronger track record, but I also don’t see much of a conflict of interest with Google (they don’t want your logins, they just want your Internet data).