Currently a user can lose their phone with the authenticator app as well as two-step login recovery codes. This risk can be eliminated by using an identity verification service such as Veriff (which supports documents issued in 230 countries and is used even by banks) - even if all you devices and documents are stolen or destroyed, you can still proof your identity to the government and get a new passport or ID card and verify your identity with such a service.
It would be great if premium users could add such as a service as a backup 2FA provider.
End user doesn’t need an account at Veriff, only the platform (Bitwarden) needs one. On Bitwarden side there is only needed to store a user’s country and a user’s identification information within their country.
I actually don’t know what information has Veriff. Instead of SSN there could be some other information from the passport/ID card that allows uniquely identify a person (as there could be many people with the same first and last name). Better to ask them. Just know that in some other countries personal ID numbers are included in every document like passport, contracts etc.
