Either by sending a code to SMS or Email, you are able to sign into your account without ever needing to or being able to add a password. Why has this become a thing recently?

  • FreedomAdvocate@lemmy.net.auEnglish
    1·
    3 days ago

    I see that the comment I initially replied to has been edited, but it still reads as though the second factor of 2FA is itself 2FA:

    Sorry but that’s just you misinterpreting it. I was explaining what passwordless authentication is like compared to the current password+2FA system, in which passwordless is basically just going straight to the 2FA, not that passwordless is 2FA. You don’t need to explain 2FA to me, I very much know what it is lol

    it might seem like enough if your email is protected by 2FA—but not if you mistakenly leave your email logged in on a device someone else has access to, which may sound stupid but it definitely happens.

    This is the worst argument that people keep coming back to. If you have left your email logged in on a device that someone else has access to, you’ve been compromised. You don’t use that as an argument against other services.

    Also passwordless isn’t only authenticated by email. It’s usually done via an authenticator app.