• flamingo_pinyata
      link
      fedilink
      English
      arrow-up
      17
      arrow-down
      7
      ·
      edit-2
      1 year ago

      App based 2FA is even worse. Sure it’s more secure but the likelihood of losing account access is much higher.
      And don’t talk about saving recovery codes. Security has to be practical and easy.

      • vzq@lemmy.blahaj.zone
        link
        fedilink
        English
        arrow-up
        9
        ·
        edit-2
        1 year ago

        The UX of manual 2FA is a problem. Copying numbers with a time limit is just a crappy experience.

        Account recovery is a hard problem, but thankfully it’s usually not an all or nothing deal, and it has been getting a lot better. I know Apple has a complex recovery flow that terminates at an actual human.