![]() It changes every thirty seconds, and is based on having an accurate clock on my device. Logging into your bank using TOTP, like the 410192 code above, is a Time-based One Time Password. (I have two physical keys: one which I carry with me one which is locked up somewhere safe). So the 410192 above is still acting as 2FA: without my physical presence, you’re not getting into my Bitwarden account, and without that, you’d not have learnt my 410192 code. That’s 2FA right there: without the physical key, you cannot get into my Bitwarden account. ![]() To sign into Bitwarden (on a new machine), I need my username, my password, and a physical key (I use a Yubikey). You lose all the advantages of two-factor authentication. If you store your code with your password, clearly that doesn’t make it two-factor authentication any more. It’s often summarised by saying “something you know (a password) and something you have (a physical thing)”, with the physical thing being used, in most cases, to give you a code like 410192 above. Logging into your bank using 2FA uses two-factor authentication. Is this madness? Or a good life choice? What 2FA is
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |