A Week Using Universal Two Factor Authentication (Fido U2F)
I'm a regular user of Google Apps and most if not all of my email accounts are on Google servers; I also liked the idea of activating two factor authentication (2FA) on my accounts. I just disliked the idea of relying on my phone and it's battery for the secondry two factor PIN code.
Upon hearing about Gmail's support for FIDO U2F key's I jumped the chance to activate 2FA and order a security key. I decided to purchase a "Plug-up" USB security key, although U2F is n open standard so other drives and designs do exist, such as Yubico's U2F key or Yubikey Neo.
Overall I find using the key alot more easier than using a mobile, I don't have to worry about battery or phone signal or type anything atl whilst logging in, instead plugging the device in to authenticate my presence.
The only two slight issues I have cropped up on is that products such as Youtube on iPhone and Chrome for Mac (and possibly other platforms too, I haven't checked.) won't work with specific app passwords and require to be activated either by text or via phone call (the old style of two factor authentication.) Android phones and the Mail app on Mac (I'm using OSX 10.10) however will happly work with a specific app password.
The second issue is Chromecast, where I use a custom domain (Setup is MUCH easier for regular Gmail users!) I found setting up backdrop (personal images in stand-by's background.) a pain before I even started to use 2FA; having to activate the feature by activating the consumer key and adding an API client. Which isn't the most straight forward thing to do in the first place.
After activating 2FA, I seem to no longer be able to use the feature? I have both readded the API client and regenerated a new consumer secret, but neiher seems to work. I'm stuck with default bland vistas and the "Featured Photos" album. Any ideas or suggestions are welcome for attempting to mend this feature.
Overall, I find using a physical key easier than using a mobile phone and there is no disadvantage as the option to use a phone is available in case of loss of the device or if youv'e forgotten to take the key out with you in the morning. I'd really like to see more websites use the FIDO U2F format, it's an open standard so I'm hoping to see it implemented on some more soon.