1password and Yubico Key / 2FA [AgileBits does not authenticate you — 1Password encrypts your data]
Dear 1Passwors -
Two factor auth is becoming a huge deal and truly a life saver for me and many others. Also, to be extra extra secured new tech like yubico has this neat little USB key that is used as well!!
Please seriously consider adding support for their Neo project since its AgileBits decision for planning on adding two factor authentication. Since 2FA is implemented by each site/service, it is up to y'all whether this will be a much needed, popular, SECURE feature!
Yubic does open source libraries and plug-ins that sites and applications can use to integrate various 2FA options with the YubiKey (https://developers.yubico.com). LastPass, Password Safe, and KeePass all have 2FA methods that use the YubiKey (LastPass - Yubico OTP or Authenticator; KeePass - Challenge-Response or OATH-HOTP; Password Safe - Challenge-Response).
There is an interesting post on AgileBits' website that I came across a couple of months ago when looking into this - https://discussions.agilebits.com/discussion/comment/114744/#Comment_114744
Many thanks,
QäGrasshopper (Ronnie)
Comments
-
@QäGrasshopper: As khad explained in that post, it isn't possible to add a second factor of authentication...as 1Password doesn't authenticate you because it can't: you control your data, and as such there is no one to serve as a gatekeeper to it in oder to authenticate you — once, twice, or ever. Instead, your data is encrypted using your Master Password, rather than being guarded by some entity — natural, supernatural, or otherwise:
Authentication vs. Encryption
It may be that we expand the 1Password 'line' in the future to include a 'service'. If we ever do something like that, we can certainly look into different authentication options. Thanks for letting us know you'd be interested in something like that generally, and also YubiKey in particular! :)
0 -
Thanks for the response!
0 -
On behalf of brenty, you're welcome. If you have any questions, let us know and we'd be happy to explain more on this.
0