How about the service provider having a feature that lets you lock yourself out for predefined periods during which you know when you will be vulnerable, for example when crossing borders? “Don’t let anyone log in for the next 24 hours, and after that only from my destination.”