Talk:Two-factor authentication

Is TOTP 2FA?
@Naleksuh: You added on one of your edits on this page that TOTP is "not considered 2FA because it relies on passwords". I consider TOTP 2FA because when set-up like most users set it up, which is scanning a QR code with the TOTP secret on their phones, correctly providing the TOTP code proves they were in possession of their phone when logging in, making it "something you have". Alongside the regular password, "something you know", you present two different factors, making it 2FA. OrangeStar (talk) 16:34, 7 May 2023 (UTC)