Right now I'm using Google Authenticator and I manage the services manually on my smartphone.<p>I use 2FA for my e-mail accounts, VPS, games and more. But it feels really silly to have it on my phone. Specially since I use 2FA for my phone e-mail account.<p>Is there any specialized hardware that I could use to replace this setup? Something that is compatible with any service and doesn't require a phone or a computer? Like a standalone solution.
Everybody recommending Yubikey: because this [0], use that [1] instead. Amazon uses Gemalto [2] for AWS MFA, but I've had bad experience with it, and cannot recommend it.<p>[0]: <a href="https://plus.google.com/+KonstantinRyabitsev/posts/4a7RNxtt7vy" rel="nofollow">https://plus.google.com/+KonstantinRyabitsev/posts/4a7RNxtt7...</a><p>[1]: <a href="https://www.nitrokey.com/" rel="nofollow">https://www.nitrokey.com/</a><p>[2]: <a href="http://www.gemalto.com/" rel="nofollow">http://www.gemalto.com/</a>
You could use any kind of hardware token like RSA, Fortinet or many other manufactors. The usually offer a software version four your desktop as well. But usually you'll hate this additional piece of crap in your pocket. The combination of something in your mind (password) and something in your hand (smartphone) is the optimal setup. If you have a password or fingerprint to unlock your phone and the token generator app for 2FA it should be enough security.
I use the <a href="https://www.yubico.com/products/yubikey-hardware/yubikey-neo/" rel="nofollow">https://www.yubico.com/products/yubikey-hardware/yubikey-neo...</a>.
One option might be something like a Pebble. I use mine for H/TOTP codes just fine => <a href="https://github.com/JumpMaster/QuickAuth" rel="nofollow">https://github.com/JumpMaster/QuickAuth</a>. It's always with you and works completely offline and outside of any service.<p>It still requires your phone to add seeds, but they are generated completely independently once seeded. Just an idea that doesn't require buying specializes single-task hardware.