According to LP's website (lastpass.com), listed below are the *benefits* of their free version versus their premium version. (Premium costs $1/month). I don't understand the meaning of 2 of Premium's *benefits* -- as I have indicated by italicized questions. If you DO understand them, I would MUCHLY appreciate being educated. FREE Access on all devices Now Free Save & fill passwords Password generator Secure notes Share passwords & notes Security challenge Two-factor authentication (2FA) PREMIUM Family sharing - up to 5 users YubiKey & Sesame 2FA options (YubiKey? 2FA options? ) Priority tech support LastPass for applications Desktop fingerprint identification 1GB of encrypted file storage
2FA means "2 Factor Authentication". Next to "something you know" (your password), you also need "something you have" (the YubiKey) to log in if you enable 2FA. The YubiKey is a small USB device that generates a unique code when you tap on the single button on it. This code changes every time you have pressed the button. Advantage: if a keylogger captures your password hackers can still not log in as long as they don't have your YubiKey.
You can also use Google Authenticator, Lastpass Authenticator or Authy (my preference) for 2FA as well. Free and easy. Yubikey is a device you buy, and carry with you that plugs into a USB port to verify your identity. I personally see no need for it with so many free software versions available, and it does nothing when you need to use 2FA on your phone. Further explanation - Say you log into your Wilder's account, and you had 2FA enabled. You nter your username and password as normal. That's the "1FA" portion. It then asks you to ender your 2nd factor. In my case, I would go to my Authy app, and it generates a matching 6 digit code that's synced up to Wilder's servers. The code refreshes every 30 seconds with a different sequence. By using that code, I prove who I am, and the site allows me to log in properly. Now, I know Wilder's doesn't have 2FA, but popular sites like Google, Facebook, Microsoft, Dropbox, Evernote, Intuit, Paypal/Ebay, etc etc do. A good reference of major places that have it is here: https://twofactorauth.org/ I HIGHLY suggest using 2FA whenever possible.
YubiKey and Sesame (both are USB based) are additional 2FA options not available in the free version of LastPass. With Sesame you create your own USB key using a standard flash drive. It was convenient before smartphones became ubiquitous, but now there's no point in carrying a flash drive when you can just use a smartphone app for authentication. YubiKey seems equally redundant IMHO.
