We are happy to announce that now everyone can use U2F, e.g. a YubiKey, a Nitrokey, or any other hardware token to protect their secure email account. U2F is the most secure form for two-factor authentication as it requires a hardware token to login to your email account.
Your email login is the most important login as for most people your email address is linked to your online identity. Read in our Email Security Guide why securing your email account to the maximum is so important to prevent email phishing.
Here is more information on Tutanota's two-factor authentication and why U2F is the most secure form for 2FA.
When you lose your second factor, only you yourself can reset your login credential to make sure no one can maliciously take over your account.
It is of utmost importance that you write down your recovery code in case you lose your second factor or forget your password.
U2F stands for Universal Second Factor. This means you use a hardware key to secure the authentication process. You first authenticate with your username and password, and then with a second factor (multi factor authentication).
Securing your login credentials with a second factor, protects your account from phishing attacks.