TOTP uses a shared secret that is also kept on the severe side, so anyone gaining access to the server can imitate it. Now, if it was U2F there would be no shared secret (a plus), but then again, U2F can associate all seasons / messages to the same person (potentially a negative).
(updated, I meant U2F!)
/ Carlos
npub1rs…yw3z5
2024-07-01 15:46:15
in reply to nevent1q…fyg0
Author Public Key
npub1rske9ph7w6sy0jslqy366rhnv9ataqmllv88umg8lfx2cjwrm7kqmyw3z5Published at
2024-07-01 15:46:15Event JSON
{
"id": "bb42b9e6eac5d1b9b52c6729a7913c83282cb37e2c7ab255cd305f99dfcc277f",
"pubkey": "1c2d9286fe76a047ca1f0123ad0ef3617abe837ffb0e7e6d07fa4cac49c3dfac",
"created_at": 1719848775,
"kind": 1,
"tags": [
[
"e",
"00d7ee39c34f7a5406e2d0f1082afc9dffc2870ba197bbc854314f1fed4b649d",
"",
"root"
],
[
"p",
"fddf487eea9db57a6e320f80e5cb63de50bedf539695a41c0d447be6c23643e1"
]
],
"content": "TOTP uses a shared secret that is also kept on the severe side, so anyone gaining access to the server can imitate it. Now, if it was U2F there would be no shared secret (a plus), but then again, U2F can associate all seasons / messages to the same person (potentially a negative).\n\n(updated, I meant U2F!)",
"sig": "a66c48d2d1fcde03539b7b75227b3faff6a9c2bd9b67b3e84c1292869c579adc684143817414ce022ed38b47a5ae33cb63635ba4e8419a329979c0f15ab124d5"
}