What's stopping you from linking more than just one physical FIDO-enabled device... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		BHSPitMonkey on Oct 19, 2020 \| parent \| context \| favorite \| on: Face ID and Touch ID for the Web What's stopping you from linking more than just one physical FIDO-enabled device to a particular site/service? Most MFA implementations I've seen already allow this, and it seems especially important if you want to minimize the pain of losing/damaging that one sacred card.

sneak on Oct 20, 2020 | [–]

AWS, for example, only permits one MFA device per IAM user account. I have four computers and four tokens. :/

dzhiurgis on Oct 19, 2020 | [–]

I don't carry any keys so those massive dongles would be pain. Plus must is not ALL which breaks everything.

warkdarrior on Oct 19, 2020 | [–]

Mobile phones can be FIDO enabled. (see https://developers.google.com/identity/fido/android/native-a... )

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact