Allow **only** using security keys as 2FA
I was very excited to see that security key support was added! Please now allow me to disable the authenticator app -- I only want my hardware keys as my second factor.
Agreed - the security is as good as the weakest link in the chain (in this case TOTP, which is susceptible to man-in-the-middle attack)
Agreed - it seems bizarre to support a high security feature yet force us to maintain a weaker second factor.
I suspect they are concerned about users getting permanently locked out of their accounts when they lose their security keys.
It should be noted that iCloud now support security keys only... and Google has done for a while.
I did note that when installing a new Proton VPN client the other day that only TOTP was available, it didn't support security keys. So maybe they are still adding support into their software.
Steven Markup commented
Varsity jackets can be worn with a variety of outfits, from jeans and sneakers to dresses and heels, making them a versatile addition to any wardrobe.
Order Now: https://getvarsityjackets.com/product-category/san-francisco-49ers-jackets
Proton User commented
Agreed - TOTP is susceptible to man-in-the-middle attack.
There is an option to use either hardware/passkey security key or TOTP when login via the web interface but there's no option to use security key from the iOS app.
Updoots here, was about to post the same thing. It's dumb and incredibly frustrating that we take good steps in terms of security and then hamstring them with arbitrary restrictions.