Just listening to @flawedworld interview with THO and the conversation around FIDO and the convenience discussion.

It was mentioned how leveraging the TItanM for FIDO added a convenience for not having to go grab a standalone key like a Yubikey and how they can easily be lost.

Would a reasonable counter be that you can also lose your phone and is it just as inconvenient in having to make changes to your accounts if you did and had to move to another device or upgrade old to new say 4a to 7? Does a separate key not make handset migration easier?

Or am I off base and the TitanM info can be migrated from one handset to the next?

Also please feel free to discuss anything FIDO related as we go etc.

The way I see it, you should always have 2 security keys at your disposal. At least two: one on you (maybe with a keyring), one in a safe place (maybe at home). The phone might replace the one that should be on you, but you should have at least one external security key in case you need to access your account without your phone (either lost or broken).

I'm not aware of any way to migrate FIDO2 data from one phone to another but that might be something we can look forward to like Apple's PassKey which seems to rely on FIDO2 with cloud features. Unsure how security and all that would play out though.

    over the years, it has been my own personal experience that it is easier to misplace (and occassionally lose) a phone than a sec key on a keyring. ymmv. though if supported by the service, leveraging the titanm as an extra key is certainly useful. i just would not count that as part of a two key model, but rather as a third key preferring to hold at least two sec keys in addition to the phone.