Review on 🔑 FEITIAN MultiPass K16 Security Key: FIDO U2F Two Factor Authenticator with Multiple Interfaces - USB-A, NFC, Bluetooth by Bobby Martinez

I bought this to test 2FA for Google's Advanced Protection Program. I use Yubikey Neo for my Android devices. Unfortunately, iOS does not have a comparable U2F consumer token. Before Google introduced their own TItan keys (Google claimed they secured the supply chain and used their own firmware. We'll see), Feitian was the only option for APP 2FA for iOS with Bluetooth LE. A BLE device works in its own way. Sometimes it took my iOS devices multiple tries to read the confirmation signal (heaven knows how wide the signal needs to be to send in a crowded coffee shop, for example). I put it aside as I found it unreliable for iOS and decided to wait until one day Yubico could offer an iOS compatible token. (Yubikey uses NFC precisely because BLE is not secure due to its range). Well, six months after I accidentally purchased this Feitian device, I received a warning email from Google stating that the registered device had a security vulnerability. They asked to be contacted by the manufacturer. I found that the same BT vulnerability exists for Google Titan's own key as well (so much for the company's previous assurances). I contacted Feitian through the customer service website (there was a consultation) and submitted my information for a warranty exchange. After three separate submissions, there was no response. I just don't care about the device and wanted to see how reliable this manufacturer is known in China. Well I think I got my answer and wouldn't recommend Feitian's own keys or Google Titan. The BLE vulnerability will always remain a vector. If you're using iOS and need U2F, wait for the Yubico Lightning/USB-C dongle, which was announced later this year.