Therefore, for me, 2fa with a OTP is enough I’m not a high risk target so my threat analysis is that The biggest Threat for me is remote password hacks/data leaks/compromised passwords etc I have a yubikey protecting 1P and then a back up key as well.
It’s down to your own threat model I guess Two-factor authentication, an authentication-based feature, when added to an encryption-based system like 1Password, will offer fairly limited benefit (specifically, it protects you from an attacker that's somehow acquired your account password and Secret Key but not a copy of your encrypted data from 1Password's servers) and should not be thought of as an "extra layer of security" for your 1Password account. I don't personally use it, as I see the combination of my 1Password account password and Secret Key as being strong enough for my purposes, and I take steps to avoid exposing them so that I don't have to worry about someone else logging into my 1Password account. With that said, enabling two-factor authentication with your 1Password account for this purpose is up to you. So in my mind, there isn't much purpose in using the separate application.
If you're just looking to benefit from the one-timeness of the TOTPs, then storing those codes in 1Password or in a separate authenticator application will give you the exact same results. If you're looking for true two-factor authentication, you'd need to store those codes on an entirely separate device (or use the Yubikey itself for the purpose of two-factor authentication with your various Logins rather than using it with 1Password). But with that said, storing those TOTPs in an authenticator application on the same device with which you use 1Password would gain you nothing in terms of either security or convenience. So using a Yubikey or not will really come down to your personal preference.Īs for storing TOTPs in your 1Password account, this is generally safe to do, and choosing to do so or not will depend on what sort of threat(s) you're looking to mitigate. As of now, security keys can be used for the purpose of two-factor authentication with a 1Password account.
0 kommentar(er)
