I’m trying to move away from Authy since they’re ending support for their desktop app, and I thought Aegis would be the right app for me to jump to, but it doesn’t seem to have a desktop app. So I’m wondering what FOSS apps the rest of you use for Desktop and Mobile 2FA?
Passkey is on your device though?
It doesn’t kill the point of 2fa. It’s something you have… you have your device. If you didn’t you wouldn’t have the TOTP code.
The something you know (password) is much more likely to be breached and stolen. That is what isn’t tied to your device. You probably want the second factor to be linked to just the devices you have.
Edit: I was wrong and mixed up passkeys with something else. Passkeys I think are still better than desktop totp apps because at least they work with secure hardware on the platform.
That’s not what passkeys are in many implementations. Look up Google/microsoft/apple passkeys. That’s what people mean when they say passkeys.
You’re thinking of a device like a Yubikey, which is a great device.
You’re right. Yah. Still at least those use “secure element” equivalents at least.