Questions tagged [fido-u2f]

FIDO Universal 2nd Factor (U2F)—a rapidly growing open authentication standard, allows greater user account login security

U2F is built to protect against phishing and man-in-the-middle attacks, allowing one U2F authenticator to access any number of services without any shared secrets. Since U2F has native support in platforms and browsers, there’s no need for drivers or client software

In order to take advantage of the security improvements provided by U2F, you'll need to purchase a hardware key. You can purchase the U2F key of your choice from a range of vendors

2 standards were created to envision a world without passwords:

YubiKey (dongle)
UAF (fingerprint, like iPhone 6)

YubiKey is a dongle that users carry to authenticate themselves. Compliant with FIDO, supported by Google and many other software vendors who need strong authentication.

Questions with this tag should be about programmatically accessing the key and validating users, not about the device itself.

Related links

Overview: https://www.yubico.com/applications/fido/
FIDO specs: https://fidoalliance.org/specifications/overview/
GitHub U2F docs: https://help.github.com/articles/configuring-two-factor-authentication-via-fido-u2f/

105 questions

votes

1 answer

Webauthn using Passkeys in osx

I am trying to use passkeys to perform webauthn registration and authentication. I have an extension to the website that access the native message host program. The native message host is written in swift. When I access websites like webauthn.io,…

asked Apr 26 '23 at 21:38

hyoyin_Kyuoma

votes

0 answers

How to get user details from stored biometric creds

I offer the user to authenticate via un IODC/AES service, then i get a persistent access token (think of it as the bank card number) that identifies the user and it's device on my service, the i offer the user to enroll with webauthn in an other…

webauthn fido fido-u2f

asked Apr 13 '23 at 13:47

mimia

votes

1 answer

FIDO2 for SSH login on Linux Server

To establish an SSH connection between my PC (Linux) and server (Linux) I have to enter the password of the user. ssh USER@ Now I want to replace the password with FIDO2. For this I have executed the following commands on my PC and…

ssh fido fido-u2f

asked Jan 15 '23 at 19:16

mepi0011

votes

1 answer

Obtain Windows Logon Token using WebAuthN API

I am on an Azure domain where users are able to logon using their FIDO2 security keys. I would like to be able to obtain a user's Windows Logon token using their security key. There are some very good C++ samples of Authentication (Assertion) of…

windows azure-active-directory webauthn fido fido-u2f

asked Dec 01 '22 at 20:09

Edz1o

votes

0 answers

Fido2 for Windows Hello

I want to leverage my windows hello by fido2 security key. but all I saw on internet is somehow dealing with azure active directory. Whereas I wanna extend schema in windows server active directory and have windows signing challenge with fido2…

windows active-directory schema fido fido-u2f

asked Nov 29 '22 at 09:16

behnam saki

votes

1 answer

How to get a "fido-u2f' attestation fromat

I tried to create a basic webauthn implementation, using the "Web Authentication API" to use user's biometric. There's one thing I don't get and I didn't find the answer online, it is: Why do I get an attestation with a format set to 'packed' by…

javascript authentication webauthn fido fido-u2f

asked Jun 10 '22 at 15:18

defless

votes

1 answer

Fido2 authentication for offline .net application

I know that fido is for authentication in web applications. But my question is whether fido is also suitable for authentication on a local .net application. The Fido server should be on the same computer as the .net application, since the computer…

.net authentication webauthn fido fido-u2f

asked Jun 09 '22 at 13:30

Julian Krebs

votes

2 answers

Can we store and read keys in Fido2 device (yubikey)

I am working on an android and iOS application that needs to have a password-less solution for login. We are trying to implement WebAuthn/Fido2 device. The problem is that Fido is still new and there is no React-Native library that implements that.…

react-native webauthn fido fido-u2f yubikey

asked May 24 '22 at 11:40

DevPy

votes

1 answer

Re-enable FIDO U2F in Chromium 98 +

In recent versions of Chromium (98+), my Yubikey is broken / no longer working to authenticate / register with websites using the FIDO2 U2F standard. For example this demo site: https://u2f.cloudentify.com/u2fdemo/ Simply nothing happens and this is…

chromium fido-u2f

asked Apr 26 '22 at 14:18

Jonathan Cross

votes

1 answer

FIDO2 C++ based application using WebAuthn.dll for "YUBIKEY 5 NFC" (External authenticator) gives "The parameter is incorrect"

I am writing FIDO2 C++ based application using WebAuthn.dll for "YUBIKEY 5 NFC" (External authenticator) using the following WebAuthN APIs of Microsoft from the https://github.com/microsoft/webauthn/blob/master/webauthn.h I'm trying to Authenticate…

c++ credential-providers webauthn fido fido-u2f

asked Mar 27 '22 at 01:11

yaamini r j

votes

1 answer

Migrating U2F to WebAuthn gem in Ruby, where to get the parameters for AuthenticatorAttestationResponse

I have a couple of questions about the WebAuthn gem and the use of U2fMigrator. I hope someone can point me in the right direction about it. I am in the step just after converting my old U2F credentials using U2fMigrator. migrated_credential =…

ruby-on-rails ruby webauthn fido-u2f

asked Feb 03 '22 at 19:26

Eduardo

votes

1 answer

Wrapped private key with libfido2?

I am currently working my way into libfido2 and trying to figure out how to use wrapped private keys with it. Yubico says in the FAQs that with YubiKey 5 unlimited key pairs can be used for FIDO U2F; however, for FIDO2 only space for 25 resident…

fido yubico fido-u2f

asked Jan 23 '22 at 14:23

Apollo13

votes

1 answer

django-fido how to do passwordless authentication?

The package does two-factor fido2 authentication, even the one step authentication requires the user to specify the username. How do use this package to perform passwordless authentication?

fido-u2f

asked Nov 04 '21 at 03:40

James Lin

25,028
36
133
233

votes

1 answer

Why window.u2f is undefined in Google Chrome?

I need to make a login system than uses FIDO tokens, I heard than chrome supports u2f natively since version 40. But I am currently usin chrome 89 and I see than window.u2f is undefined. In firefox u2f variable is defined natively There are demo…

google-chrome fido-u2f

asked Apr 28 '21 at 16:13

Alejo Dev

2,290
4
29
45

votes

1 answer

How does "Security Key by Yubico" identify each key?

According to the sentense below in this page, "Security Key by Yubico" does NOT have a serial number. Serial numbers are unique across all models of YubiKeys, with the exception of Security Keys, which do not have serial numbers. However, in…

fido-u2f yubico

asked Jul 16 '20 at 05:52

task4233

Prev 1 2 3 4

6 7 Next