App based 2FA is even worse. Sure it’s more secure but the likelihood of losing account access is much higher.
And don’t talk about saving recovery codes. Security has to be practical and easy.
The UX of manual 2FA is a problem. Copying numbers with a time limit is just a crappy experience.
Account recovery is a hard problem, but thankfully it’s usually not an all or nothing deal, and it has been getting a lot better. I know Apple has a complex recovery flow that terminates at an actual human.
That’s one way to stop the scourge of SMS based 2FA.
App based 2FA is even worse. Sure it’s more secure but the likelihood of losing account access is much higher.
And don’t talk about saving recovery codes. Security has to be practical and easy.
The UX of manual 2FA is a problem. Copying numbers with a time limit is just a crappy experience.
Account recovery is a hard problem, but thankfully it’s usually not an all or nothing deal, and it has been getting a lot better. I know Apple has a complex recovery flow that terminates at an actual human.
deleted by creator