• MostlyHarmless@sh.itjust.works
    link
    fedilink
    English
    arrow-up
    4
    arrow-down
    1
    ·
    edit-2
    1 year ago

    No, wrong. Still two factor because your fingerprint plus your device.

    These authentication methods aren’t as simple as the two factor Google Authenticator 6 digit number. They are cryptographically secure keys. Even if someone finds out what the token is, they still cannot send a valid request because they cannot generate a digitally signed request using the private key locked in your device’s hardware, unlocked by your biometrics.

    Passwords are inherently insecure and relatively easy to break. Digital signatures and secure tokens are almost unbreakable