Hello everyone,
I would like to suggest adding Yubico Authenticator to the Multifactor Authentication section alongside Aegis and Ente Auth.
Unlike a regular application, Yubico Authenticator requires both a password and the physical presence of a YubiKey to generate TOTP codes. These codes are not stored on the device itself but directly on the key, which provides a significant security and resilience advantage, both in everyday use and in exceptional circumstances.
YubiKeys are therefore not only useful as a login method (FIDO2/U2F, smartcard, etc.) but can also securely store TOTP codes.
It would also be worth updating the section on Yubico, as the old tools (YubiKey Manager and YubiKey Personalisation Tool) are no longer maintained. Today, Yubico Authenticator replaces them and works across all major operating systems.
A concrete example:
-
I use Bitwarden as my password manager and Aegis for 2FA.
-
With Yubico Authenticator, even if I lose or replace my phone, I can still access my TOTP codes via my YubiKey (I keep two keys to avoid a single point of failure).
This makes it a modern, robust, and practical solution that deserves to be listed.
What do you think?