They're all going to move that way - it's sort of fundamental to PassKey. It can be done with just a laptop and their built in hardware but I suspect that since everybody has a mobile phone the UX will be built around that more often than not.

I quite like it though. At one of my banks I don't even use a password. My browser has the right material (from a prior authn) and then it pushes a validation request to my phone and with FaceID I'm in.

Capital One now for a while and a local credit union. Amex does provide this as an option but supports SMS as well.

Within the EU, there is a law that mandates accessibility without a smartphone. The banks will sell you some proprietary dotcode scanners then which are all manufactured by the same crappy UK company (as a sidenote).

But the upside is: they work offline, and makes your 2FA app unhackable because it's not an app and instead a physically separate device.

If you're as serious about your opsec as I am, I heavily recommend to not use apps on smartphones for banking.

My chase only allows sms or call 2fa. Wish they would add passkeys or other options

> Which banks do you use?

My local credit union (TechCU) does none of that nonsense, and I highly recommend a credit union over any of the big banks in any case.

>Which banks do you use? I’m looking to switch away from Chase (which does this).

Do you mean SMS codes or a Chase Bank App?

I have to deal with the former because I auto-delete cookies when I close tabs and use Multi-account containers on Firefox.

I've never been required to install any application (Chase branded or otherwise) on my phone in order to use the Chase website. I'll note that I've been a Chase customer since they acquired Chemical Bank in 1996.

Am I missing something important here? If so, I'd love to hear about it.