Of course, I don't deny there're security benefits, but IMHO it's worth mentioning that there're some trade-offs.
>Well, of course there are always tradeoffs. The biggest one right now is that Google Chrome is the only major browser that supports U2F.
>Because it requires browser support to act as an intermediary between the website and the security key, you can only use it if the browser supports it.
>Mobile is also an issue, as they don't have USB ports!
>Some YubiKeys support U2F via wireless NFC, but support for this in mobile phones is very limited at the moment.
Sure, U2F has its drawbacks, too. NFC U2F and NFC TOTP are quite nice if your phone supports it. The YubiKey Neo can store TOTP secrets and show codes via the Yubico Authenticator app (also works on Desktop with yubioath), while Google Authenticator handles U2F via NFC. This is something that could really use an opening-up of NFC in iOS, only having it on Android is too limited to make it a success.
>Well, of course there are always tradeoffs. The biggest one right now is that Google Chrome is the only major browser that supports U2F.
>Because it requires browser support to act as an intermediary between the website and the security key, you can only use it if the browser supports it.
>Mobile is also an issue, as they don't have USB ports!
>Some YubiKeys support U2F via wireless NFC, but support for this in mobile phones is very limited at the moment.