I’m trying to move away from Authy since they’re ending support for their desktop app, and I thought Aegis would be the right app for me to jump to, but it doesn’t seem to have a desktop app. So I’m wondering what FOSS apps the rest of you use for Desktop and Mobile 2FA?

  • ebits21@lemmy.ca
    link
    fedilink
    English
    arrow-up
    5
    ·
    9 months ago

    Passkey is on your device though?

    It doesn’t kill the point of 2fa. It’s something you have… you have your device. If you didn’t you wouldn’t have the TOTP code.

    The something you know (password) is much more likely to be breached and stolen. That is what isn’t tied to your device. You probably want the second factor to be linked to just the devices you have.

    • mholiv@lemmy.world
      link
      fedilink
      English
      arrow-up
      1
      ·
      edit-2
      9 months ago

      Edit: I was wrong and mixed up passkeys with something else. Passkeys I think are still better than desktop totp apps because at least they work with secure hardware on the platform.

      • ebits21@lemmy.ca
        link
        fedilink
        English
        arrow-up
        1
        ·
        9 months ago

        That’s not what passkeys are in many implementations. Look up Google/microsoft/apple passkeys. That’s what people mean when they say passkeys.

        You’re thinking of a device like a Yubikey, which is a great device.

        • mholiv@lemmy.world
          link
          fedilink
          English
          arrow-up
          1
          ·
          9 months ago

          You’re right. Yah. Still at least those use “secure element” equivalents at least.