undefined | Better HN

0 pointsjefftk3y ago0 comments

I use a hardware security token to log into my Google account and then use that to log in to several other services. If I were to lose my token, I would still have my backup tokens, and could update this account to use a new token and unenroll the old token.

If instead, every site I had ever logged into kept track of my tokens I would need to visit each of them and do the same thing.

(It's already messier than that because some accounts I have--GitHub and Facebook--don't accept SSO but are important enough to be worth protecting with hardware tokens. But I don't want to go farther in this direction!)