Follow

If you run a service that supports U2F or WebAuthn 2FA with a security key, you should have a setting in your account security settings that allows the user to set security key use as mandatory (disabling all other forms of 2FA like SMS or backup codes) provided they have at least 2 security keys configured.

Sign in to participate in the conversation
Mastodon

The social network of the future: No ads, no corporate surveillance, ethical design, and decentralization! Own your data with Mastodon!