@Narfcake and @jimfowler8 - can either of you comment on security of using FIDO / FIDO2 USB keys?
- There are quite a few manufacturers but how do we know the dongles are safe …and not USB malware themselves?
- Anything plugged into a PC can be unsafe.
- And a lot of these are made outside the USA
- Whether they are legit or even make cracking facilitated - seems impossible to tell.
Any advice?
I haven’t looked into passkeys at all. The XKCD method + 2FA has seemed to keep things in check well enough for me, at least.
Thank you for the reply. Likewise. I use mixed alphanumetic and symbols interspersed plus 2FA. Even multi level MFA at work.
But I received two Thetis dongles from manufacturer, but do not know whether to trust them or how to test.
You could just use a Yubikey. They’re pricy, but very well established and used for enterprise level security at large and small companies.
I have three. Two are backups.
Thanks. Thetis reportedly is used even by the US military, but I am not sure if their security is swiss cheese with extra large holes. Meanwhile, Apple Watches are forbidden on Chinese PLA bases.