From 5337f83f5829715acfdb37b2a149b54db3894a31 Mon Sep 17 00:00:00 2001
From: Max Hata <maxhata@users.noreply.github.com>
Date: Sun, 1 Nov 2020 18:25:39 +0900
Subject: [PATCH] Adding the reason for the recommendation in Sec 4.

Added the reason why allowing users to register user-verifying platform authenticators as second factors for account bootstrapping.
---
 HowToFIDO.md | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/HowToFIDO.md b/HowToFIDO.md
index e8168a7..fe4136e 100644
--- a/HowToFIDO.md
+++ b/HowToFIDO.md
@@ -389,7 +389,8 @@ as 2nd factors when bootstrapping their account.\[10\]
 
 > **Note:** We <strong><span class="underline">do not recommend</span></strong> 
 > allowing users to register user-verifying platform authenticators as second factors for 
-> account bootstrapping. If you want to give your users the convenience of biometric 
+> account bootstrapping, since it may lead to locking out the users from logging into their accounts if the platform authenticators are lost, stolen or damaged. If such lock out happens, you need to take the users to your account recovery process that may cause frictions with them. 
+> If you want to give your users the convenience of biometric 
 > sign-in, follow <a href="#opting-into-fido-based-reauthentication"><span class="underline">the
 > steps above</span></a> to register a user-verifying platform authenticator as a password
 > replacement for **reauthentication**, **not** as a second factor