2FA codes protection
With the ending of Authy Desktop I am thinking of moving my 2FA codes into the password manager (currently 1Password). It made me stop and think if someone, somehow gained access to my password vault, they would then have all “all the keys”. I know it is technically more of a risk having them both in one vault but realistically is it that big of a concern to outweigh the convenience of it?
Thanks
1Password Version: Not Provided
Extension Version: Not Provided
OS Version: Not Provided
Browser: Not Provided
Comments
-
That would be largely a personal decision that you would need to weigh based on your own needs and security concerns. You could opt for all in 1Password (ease of use), some in 1Password (balanced), and none in 1Password. The vast majority of mine are saved in 1Password. However, there are a select few that are in authenticators outside of 1Password due to specific security guidelines and recommendations. You might also find that approach fits your needs, too. If you're like most of us you're likely never far from your second device.
For me, the ease of use was/is a big factor for my own needs. You may also find this blog post helpful.
1Password & 2FA: Is it Safe to Store Passwords and 2FA Codes Together?
0 -
True.. and for right now ease of use might be the deciding factor. Sadly when Authy Desktop went away it forced users to find other solutions.
0 -
One thing to keep in mind is that no one but you can access your 1Password items (both your passwords and one-time passwords) without both your account password and Secret Key. Your 1Password account is secure and only accessible to you, it's why it's safe to store your passkeys (which replace both passwords and two-factor authentication) in 1Password.
Let us know if you have any other questions. 🙂
-Dave
0
