You need a TPM 2.0 compatible CPU, but something like this sounds really excelle... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		lukeschlather on Oct 18, 2022 \| parent \| context \| favorite \| on: TOTP tokens on my wrist with the smartest dumb wat... You need a TPM 2.0 compatible CPU, but something like this sounds really excellent: https://github.com/tpm2-software/tpm2-totp This means your laptop itself would be your hardware device, the TOTP secret would be stored in the TPM and theoretically impossible to steal/copy. Of course this means you will probably want a mobile device (possibly a second laptop also) as a backup.)

cryptonector on Oct 18, 2022 [–]

Note that tpm2-totp is specifically meant to authenticate your laptop's state (TPM PCR values) to you, not you to some third system. But you could adapt tpm2-totp for the purpose of authenticating you to other systems.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact