DireMunchkin on Nostr: I own some Yubikeys and use them as a 2nd factor authentication option, they're ...
I own some Yubikeys and use them as a 2nd factor authentication option, they're arguably the most secure form of 2fa. See here for motivation:
https://www.privacyguides.org/en/basics/multi-factor-authentication/#fido-fast-identity-online
It's also a bit more convenient to identify with a permanently plugged in USB-A Yubikey than a TOTP app in my opinion.
I wouldn't want to replace my password manager with them though as as some other people pointed out here you're locked into the passkey provider. So Yubico in this case.
Also make sure to add several Yubikeys or TOTP as a fallback wherever you use them as 2nd factor as you can't export the key and you will be locked out if you lose the one key.
https://www.privacyguides.org/en/basics/multi-factor-authentication/#fido-fast-identity-online
It's also a bit more convenient to identify with a permanently plugged in USB-A Yubikey than a TOTP app in my opinion.
I wouldn't want to replace my password manager with them though as as some other people pointed out here you're locked into the passkey provider. So Yubico in this case.
Also make sure to add several Yubikeys or TOTP as a fallback wherever you use them as 2nd factor as you can't export the key and you will be locked out if you lose the one key.