I think its time we get an update to the security token and launcher.

[enthauptet]

physical token solution.

Might want to ask RSA if you think keyfobs and software tokens are actually secure. Theoretically producing fewer keys is actually more secure by reducing your attack surface.

Anyway if you are really this worried about the security of your token then your token would not be your primary concern anyway tbh as your authentication is only as secure as how it is transmitted. Without being privy to any of the details of their system architecture talking about it doesn't mean anything.

[worldofneil]

Might want to ask RSA if you think keyfobs and software tokens are actually secure.

That's not really the topic at hand, but SE aren't using tokens from RSA, they're using rebranded Vasco DIGIPASS GO 6's.

Theoretically producing fewer keys is actually more secure by reducing your attack surface.

I'll be completely honest, I don't know if that's the case or not. I'll take your word for it!

your authentication is only as secure as how it is transmitted.

It's transmitted over HTTPS to ffxiv-login.square-enix.com. Their server could be locked down a bit more, but given that we have to provide the OTP each time, personally that's good enough for me. Your mileage may vary.