I think its time we get an update to the security token and launcher.

[Sicno]

if it is saved on the PC then it is hackable.
That is the whole point of the One Time Password. To have a password that change everytime and that is not hackable by keylockers. Or a normal 2nd password, where the player is forced to change it once a month, would do the same.

...if the OTP is entered on your current IP address you have 30 minutes where you can skip the OTP itself as long as you aren't trying to log in from another machine or IP.

I boldened and enlargened the parts you and other people are completely ignoring from the original request, Felis.

[Aylis]

It doesn't even come close though. Blizzard has the same dual-factor authentication and unless you log in from a new machine or IP address your account is flagged to skip it. If someone attempts a login from somewhere else they can't get in without you accepting it on whatever device you use for the authenticator or if you input the code given by the key fob.

Wildstar has the same dual-factor system in place. It's been a while since I logged in but as I remember it was for five or seven days. Worked amazing really and I never heard of an issue or complaint.

[Aerilon]

This goes against what dual factor authentication is designed for. If you don't want the extra layer of security, disable the token. I believe there are options to disable this. Next time you know you will need to login quickly disable your token for the day and put it back on at a later time.

You can have dual factor authentication without having to input the OTP every log in. Look at GW2, gmail, discord, and even iCloud. All of them only require input after so many failed login attempts, a certain amount of time passes, or a new IP. The OTP and the launch are archaic at best and need some serious updating.