In a few weeks I'll do a workshop about security for people who are tech illiterate, I plan to teach about password managers and 2FA.
If I show the 2FA number codes, like the 123 456 ones that I have to paste when required, can that be a possible security breach for me? or is it save since is gonna change in a few seconds anyway?
You must log in or register to comment.
I'd probably edit a few example screenshots for a purpose like that.
If you really want to show it live on an actual device, then maybe with a throwaway/dummy account
I would assume there aren't any security concerns as:
- You are not showing the seed used to generate the actual codes
- this is for non tech-savy users
Unless there's a super hacker or NSA agent in the class that can figure out your password in real time.. You should be fine doing that.
