Reduce 2FA frequency
Having to grab my phone and get a code from Authy every time I want to check my mail is a major PITA. Google only asks for your second-factor authentication
A) every 30 days or
B) when you use a new app to login or
C) when you use a new machine to login
B and C are obviously required. Now, Google's 30-day period before reauthenticating might be too long, but I think users should be able to select how often then want to be required to provide a second-factor code. Allow users to require 2FA every time if they want it. I personally would probably be content to use 2FA once a day or maybe once a week.
There's always a balance between security and convenience. I would like to recommend Proton Mail to all my law firm clients. But I'd also like them all to be using 2FA. And having to provide a code every single time they log in would simply be a non-starter for my impatient clients.
-
Daniel Williams commented
When I'm using a browser to access my account the two-factor authentication works great. However, if I close the window, i'm logged out (which is good), but I have to enter another two-factor code to login again.
It would be nice to be able to enable the second security measure but make it required only once a day or week. For example, "Remember this device for 7 days."
-
gjwolfswinkel commented
The lack of this feature means I'm often hesitant to do a quick check on my mail, as I need to grab my phone, open authenticator app, find the right entry, type code etc.
-
Anonymous commented
Currently, when I have it turned on I have to use a fresh 2FA code every single time I log in on my work PC. I don't have to do that on my Android phone, thankfully. I love the extra layer of security, but I should ideally have the option to avoid that security on a computer I use frequently (as with every other account that I have with 2FA).