Which 2FA physical key do you prefer? (lemmy.ml)

submitted 2 months ago by sparkle_matrix_x0x@lemmy.ml to c/privacy@lemmy.ml

26 comments fedilink hide all child comments

I am thinking about buying a pair of physical 2FA keys to protect my password manager and sensitive accounts. Which brand and model do you suggest?

If a model with open source firmware doesn't come with big drawbacks, I'd prefer it, because I may learn from the source code and even contribute to it.

NFC is not necessary, and the keys should be USB-A. A fingerprint reader is welcome if the price doesn't increase too much.

Thank you all in advance.

you are viewing a single comment's thread
view the rest of the comments

[-] stupid_asshole69@hexbear.net 7 points 2 months ago* (last edited 2 months ago)

Your only “good” option is yubikey. They’ve been around comparatively forever, have all the problems worked out and make durable hardware. All that matters because you don’t want to get something from a company that goes under in a few years and leaves you high and dry and you don’t want the dongle to break because that’s your authentication, now you’re locked out of your shit.

I recommend against getting some doodad with a biometric reader. You’re adding complexity, attack vectors and not getting much out of it plus you’re locking yourself out of deniability and the possibility of handing a trusted person your dongle, telling them your password and having them act in your stead.

[-] sparkle_matrix_x0x@lemmy.ml 2 points 2 months ago

You're right about the FP reader, I didn't think about that before

this post was submitted on 20 Oct 2025

40 points (100.0% liked)

Privacy

43392 readers

329 users here now

A place to discuss privacy and freedom in the digital world.

Privacy has become a very important issue in modern society, with companies and governments constantly abusing their power, more and more people are waking up to the importance of digital privacy.

In this community everyone is welcome to post links and discuss topics related to privacy.

Some Rules

Posting a link to a website containing tracking isn't great, if contents of the website are behind a paywall maybe copy them into the post
Don't promote proprietary software
Try to keep things on topic
If you have a question, please try searching for previous discussions, maybe it has already been answered
Reposts are fine, but should have at least a couple of weeks in between so that the post can reach a new audience
Be nice :)

Related communities

much thanks to @gary_host_laptop for the logo design :)

founded 6 years ago

MODERATORS