SMS 2FA and TOTP aren't mutually exclusive are they?
TOTP -> Time-based One Time Password
SMS -> Delivery mechanism.
You can deliver TOTP over SMS.
Obviously, SMS shouldn't be used, but I was under the impression that the code generation mechanism and the code generation algorithms are completely disparate concepts.
Not sure I'm understanding you, but TOTP isn't delivered. It's generated locally/offline, based on the time and a private key that was set up when you first turned on TOTP 2FA.
TOTP -> Time-based One Time Password SMS -> Delivery mechanism.
You can deliver TOTP over SMS.
Obviously, SMS shouldn't be used, but I was under the impression that the code generation mechanism and the code generation algorithms are completely disparate concepts.