Significant forms of phishing are stopped by U2F (as used by Yubikey and others)... | Hacker News

Hacker News new | past | comments | ask | show | jobs | submit

login

monoideism on July 31, 2020 | parent | context | favorite | on: An update on our security incident

Significant forms of phishing are stopped by U2F (as used by Yubikey and others), by crytographically binding your credential to the domain name , and only issuing an approval signature if the site matches. Obviously, this stops credential phishing.

https://krebsonsecurity.com/2018/07/google-security-keys-neu...

https://medium.com/@antonisikora/how-u2f-security-keys-can-e...

Thorrez on July 31, 2020 [–]

You and zamalek appear to be in agreement.

monoideism on July 31, 2020 | [–]

You're right - I misread the comment. I'd delete my comment if I could.

Consider applying for YC's Spring batch! Applications are open till Feb 11.
Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact