Use Security Key without Authenticator App
I would like to additionally secure my account with a security key only, not with a 2FA authenticator app.
-
Rick commented
A chain is only as strong as the weakest link. Remove the authentication app requirement so we can have a stronger chain with a pass key only.
-
Данил Шаповалов commented
Turn off auth app and leave the keys only option available . Auth app is less secure than keys. I have four of them, losing one is not critical at all
-
Darkwing Duck commented
Agree on all the previous comments. Security-wise, there is no point of adding a security key, if the authenticator app option must remain active. That way, the authenticator app remains the weak(er) link. Please @Proton, add this option as soon as possible.
-
Maurits commented
Really surprised it is not possible to disable the authenticator app 2FA method and use only the security key option.
-
Purple Dragon commented
Agreed. For increased security, I would love to disable the authenticator app ability and only login with my physical yubikeys. Perhaps the interface can force a minimum of 2 yubikeys to do this to ensure the end user has a backup plan.
-
xx commented
the key concern is the following - offering passkey authentication is effectively pointless in terms of security if at all times i could still access proton with an authenticator app. i believe proton out of everyone should understand how insecure authenticator apps really are.