alt Hacker NewsTOTP is pretty standard. Give the user backup codes and just use normal recovery methods. For most things that might be email. For a bank it's probably identity verification.
TOTP is pretty standard. Give the user backup codes and just use normal recovery methods. For most things that might be email. For a bank it's probably identity verification.
The vast majority of Vietnamese I know do not have an email account.
So that would be a dumb thing for a Vietnamese bank to use as a recovery method.