• flamingo_pinyata
    link
    fedilink
    English
    arrow-up
    17
    arrow-down
    7
    ·
    edit-2
    1 year ago

    App based 2FA is even worse. Sure it’s more secure but the likelihood of losing account access is much higher.
    And don’t talk about saving recovery codes. Security has to be practical and easy.

    • vzq@lemmy.blahaj.zone
      link
      fedilink
      English
      arrow-up
      9
      ·
      edit-2
      1 year ago

      The UX of manual 2FA is a problem. Copying numbers with a time limit is just a crappy experience.

      Account recovery is a hard problem, but thankfully it’s usually not an all or nothing deal, and it has been getting a lot better. I know Apple has a complex recovery flow that terminates at an actual human.