It appears that Matthew Richardson via mailop <matthe...@itconsult.co.uk> said: >TOTP is based on a shared secret which is (depending upon TOTP client) >straightford to extract and retain securely for the long term. > >Does anyone see any flaw in this approach, or in the longevity of TOTP?
I think it's the best we can do these days although of course a sufficiently clever piece of malware could steal your TOTP seeds along with your passwords. R's, John _______________________________________________ mailop mailing list mailop@mailop.org https://list.mailop.org/listinfo/mailop
