An example of how useless it is. A Yubikey is purchased and can disconnect 2FA, register a new key to the Internet service. After that, the service does not log out for a while, but when the web service suddenly requested a PIN from Yubikey, The local driver did not solve anything and together with Microsoft claimed that the PIN was not the original PIN. I'm surprised, but it was not possible to log in to previously registered accounts such as gmail, id and others with that key. A factory reset will be performed because a different PIN must be generated. This is followed by re-registration and disconnection of the original service key registration, somewhere it is possible and somewhere they want the original physical key, with some services it is possible for free enter only one key and other services cannot even delete it. It is time consuming. According to the number of services. If the PIN is changed, then you can't log in and it's annoying. For those Casa services, "Lockdown" would probably follow, then "Video verification to unlock". For standard accounts, Video Verification for Sensitive Actions is an impossible action. Then only with the Premia account and it's embarrassing and expensive.