Sign in / up

Reply to post: Is this really 2FA?

LastPass now supports 2FA auth, completely undermines 2FA auth

Anonymous Coward
Anonymous Coward

Is this really 2FA?

I don't really understand how these mechanisms can claim to be 2FA, if the second factor can be reduced to a piece of information that can be digitally duplicated into your LastPass. It's two things you know: your password and the seed value. Thats 1FA, not 2FA.

For it to be a real "something you have" factor, the key needs to be hidden inside some kind of hardware, like an RSA key or one of those bank PIN devices.

POST COMMENT House rules

Not a member of The Register? Create a new account here.

Forgotten password ?

  • Enter your comment

  • Add an icon

Anonymous cowards cannot choose their icon