Comment by necovek

In a sense, that is the solution: ensure availability through open standards (like the web platform) through legislation.

My bank has stopped issuing physical TOTP tokens years ago, and I am holding on to one from 2006: when that one dies, I won't be able to use their e-banking web site if I do not have an Android or iOS locked-down phone.

Not, that does not mean making it a protected class. But instead, guaranteeing access through open protocols and open platforms should be sufficient.

I also hope legislation, like CRA/NIS2 in EU and different e-waste regulations combined, will push manufacturers to consider FOSS approach as a get-out-of-jail card too.