Two Factor Authentication Concern

DoctorBrown

My understanding is that 2FA is secure because the password and 2FA authentication app are (usually) on two separate devices. If 1Password is used as the authentication app, it now combines the operations onto the same device.
Doesn't this violate the premise of 2FA? If your master password is compromised, then 2FA is useless as a security protection.

If 2FA were required to be on a separate device for unlocking 1Password, wouldn't that make 1P be more secure?

This should be posted in the Lounge forum. Please move it if possible.

---

1Password Version: 8.10.8
Extension Version: 2.11.0
OS Version: Windows 10
Browser: Firefox

XIII

Does this help?

https://blog.1password.com/1password-2fa-passwords-codes-together/

DoctorBrown

Yup, Thanks for the pointer. And quick reply.

ag_josephine

@DoctorBrown,

I'm glad you found the blog post helpful.

Be sure to let us know if you have any other questions.