Post AVszUIviZeQSo7R6VE by eingfoan@infosec.exchange
 (DIR) More posts by eingfoan@infosec.exchange
 (DIR) Post #AVsljeUxGc9cgaLHQO by eingfoan@infosec.exchange
       2023-05-21T10:14:46Z
       
       0 likes, 0 repeats
       
       Newbie question: what is best #mfa #authentication method for #offline networks? I am playing around with a lab environment where I want good mfa inside but don’t want it to connect to the internet. My current point of view is: I can not place #Fido there since it „needs“ internet in many ways.. right? . My current way of thinking is i build a PKI into this network and use it with #yubikey acting as a Smartcard but not #u2f or #fido2 . Am I wrong ? Is there better options?
       
 (DIR) Post #AVsljf6B2DvcY1l0RU by 7666@comp.lain.la
       2023-05-21T14:27:10.315521Z
       
       0 likes, 0 repeats
       
       @eingfoan what is wrong with totp
       
 (DIR) Post #AVszUIviZeQSo7R6VE by eingfoan@infosec.exchange
       2023-05-21T17:00:12Z
       
       0 likes, 0 repeats
       
       @7666 in general totp at least for me is „lesser“ secure than others (want to be extreme in this scenario)
       
 (DIR) Post #AVszUJVWQX48bABhJI by 7666@comp.lain.la
       2023-05-21T17:01:16.321268Z
       
       0 likes, 0 repeats
       
       @eingfoan i don't see how this is the case. totp (non SMS of course) is fine, unless you insist on hardware based tokens (yubikeys etc)