Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Allow use as FIDO authenticator #19

Open
bitgamma opened this issue Nov 9, 2018 · 9 comments
Open

Allow use as FIDO authenticator #19

bitgamma opened this issue Nov 9, 2018 · 9 comments
Labels
request-for-comment

Comments

@bitgamma
Copy link
Contributor

bitgamma commented Nov 9, 2018
edited by 0xc1c4da
Loading

We could implement, as a separate applet, a FIDO U2F authenticator. Ideally, if the formats are compatible, one would be able to use one of the derived keys as identity for authentification.
@guylouis
Copy link
Contributor

guylouis commented Nov 9, 2018

I agree this would be a very natural extra feature of the card. And quite easy to add. Are there any good open source implementation for this ?

I wouldn't either put it on top priority of the to-do-list, unless we identify some usages of U2F linked with adoption of ethereum, dapps, and wallet space. What do you think ?

@bitgamma
Copy link
Contributor Author

bitgamma commented Nov 9, 2018

There are open source implementations, but I want to explore the possibility of not using separate identity keys for FIDO and instead integrate it with our key tree (using the non-wallet subtree). Of course this would mean doing our own implementation. I also do not consider this to be top priority for now.

@mulles
Copy link

mulles commented Oct 16, 2021
edited
Loading

#79 related issue, which I closed now as it is double

@rileyg98
Copy link

rileyg98 commented Jan 3, 2022

For something like this, that's kind of outside the scope of this applet. If you're after a FIDO2 compliant spec, you can freely fork my implementation of this (https://github.com/VivoKey/vk-u2f).

@rkreutz
Copy link

rkreutz commented Jul 23, 2022

Hey there. Any plans on supporting this? I'd say even just supporting a very basic implementation with no connection with the main applet keys would already be very helpful and might drive adoption of keycard for other things (not only tied to cryptocurrencies).

@rkreutz
Copy link

rkreutz commented Jul 31, 2022

For future reference, I've managed to use this as an U2F authenticator on my Keycard https://github.com/darconeous/u2f-javacard. Just downloading the CAP from the releases and following the script on the README was enough to have it working on my iOS device.

@willianpaixao
Copy link

Hey @bitgamma, any chances to use the above mentioned implementation?

@bitgamma
Copy link
Contributor Author

bitgamma commented Dec 6, 2022

we keep the card open so that you can install any applet on it. We might look into preinstalling it in future batches but there is nothing preventing you to install it using the venerable https://github.com/martinpaljak/GlobalPlatformPro. Just make sure you use the correct globalplatform key which is c212e073ff8b4bbfaff4de8ab655221f

@willianpaixao
Copy link

I'll try to install it, but my question is whether this feature could be brought as a official/supported Keycard feature.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
request-for-comment
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
6 participants
@willianpaixao @rkreutz @rileyg98 @guylouis @bitgamma @mulles