Cyber Security Academy · Lesson

Push and Hardware Keys

FIDO2 and security keys.

Beyond Typed Codes

Typed OTP codes work but are clumsy and phishable. Two stronger possession factors improve the experience and security: push approvals and hardware security keys.

Push Notifications

Push-based MFA sends a prompt to your phone. You tap Approve or Deny instead of typing a code.

It is convenient and the server confirms the response cryptographically.

All lessons in this course

Authentication Factors
TOTP and HOTP
Push and Hardware Keys
MFA Bypass Risks

← Back to Cyber Security Academy