To review this will require a smart phone and an app but it relies on google privacy rape and ANCIENT sms texting. WTH?
For app you ignored ubiquitous xmpp texting?
Why not roll back to bank style ATM initial pin delivery via postal mail? It would be as “smart” as the ancient tech embraced by the naive and willfully ignorant (sms texting).
OCRA as two factor is not dissimilar from xmpp texting client OTR fingerprint verification options. No, let’s put all our security privacy-eggs into the satanic motto google basket. You probably paired your android device with a google account (it’s not required for functional android device)
“if you lose your device”
yup, you’ve TIED yourself to ONE device. Real “smart” of you.
y’all are too stupid to be free