Stockfish is only slightly weaker, and is open source.
What's the point of closed source chess engines when a lot of engines are already far stronger than humans? Who's going to pay the money for a closed-source chess engine? Idiots? A grandmaster may want it to study its playing "style", and chess algorithm researchers might want it to study it, and other chess engine designers might want it to reverse engineer it, but there's no practical reason for even a strong chess player to buy chess engines anymore.
FIDO alliance 2-factor hardware tokens, like YubiKey Neo.
Until browsers roll out FIDO protocol support, a mobile app with normal OATH TOTP 2-factor (implementations include Authy, Duo Mobile, Google Authenticator, etc) is the way to go. And use a password manager for the 1st factor. When support gets baked in, the FIDO serviceclienthardware token protocol will dramatically improve usability of the 2nd factor.