The US government uses the USPS to do identify verification for passports. If it can handle identity verification for passports, why would it not be able to handle identity verification for other purposes, such as replacing or reauthorizing one’s MFA device?

Hell, it should be trivial to offer federal government provided emails with ID verification with customer service in the event of loss of device/loss of ID/death/etc.

Passports require the most paperwork out of anything - your in particular, a birth certificate, a second form of ID including a driver's license, a photo, and $130+$35. The USPS isn't just looking at a face and issuing a passport.

0The issue here is that homeless don't hold onto anything physical for 4 months; identity verification breaks down in-person immediately as shelters/libraries can't be expected to run a facial recognition operation, and specific shelter employees/volunteers aren't guaranteed to be there anytime a homeless person might walk in and need those backup codes, but it breaks down even further online since 2fa is inherently 'what you know' + ('what you have'/'who you are').

> Passports require the most paperwork out of anything - your in particular, a birth certificate, a second form of ID including a driver's license, a photo, and $130+$35. The USPS isn't just looking at a face and issuing a passport.

The point is the hardest part of the problem is already solved - which is the physical infrastructure and labor. As for not holding onto physical items, USPS also has little boxes that people can keep their belongings in.

The USPS and banks would be ideal identity validators. Having run a few mail servers I don't think the Govt is best placed to do that, but they could outsource it to google, with a few tweaks to allow identity attestation.

Many other countries have a central government portal with secure messaging, with federated identify. Heavily reliant on 2FA of course.