* Allow U2F hardware keys as a method * Allow to configure multiple independent methods (e.g. OTP + three U2F keys), just like Github does.
FIDO2/WebAuthn has largely superseded U2F, so I'd suggest looking into that instead. It's more widely supported at this point. For example, on Windows devices with a TPM + Windows Hello, Windows Hello can be used to authenticate with FIDO2.
I'll add the text of the multi-factor authentication setup screen here to make this suggestion easier to find: . Two-Step Verification Change Password Turn Password Off Change Recovery Email You have enabled Two-Step verification. You'll need the password you set up here to log in to your Telegram account.
I would go even further to provide an option of replacing SMS codes with 2FA authenticator app (e.g. Aegis) altogether. This would improve account security drastically.