Allow 2F Security Keys for Password Reset and Account Recovery
One of the more secure options for account recovery or password resets would be to utilize security keys. Security keys can inherently contain 2-3 factors of verification in one. You have to physically have the key (1F), you have to then touch the key to confirm human contact (2F), and you can require that a password for the key be entered (3F). Users can set up more than one key to use, so there is inherently a fail safe to the back up option. This option seems like a no brainer option that should be offered to users for the recovery of data or passwords and would vastly improve security options over current options that are regularly hacked (another e-mail or phone number). Please make security keys an option for these recovery methods.