Highest Voted 'yubico' Questions

3

votes

0 answers

Python: TLS session with Yubikey

I am setting up a rest client that must be trusted by a remote server using client certificate. Client written in python, running on windows 10. How can I use YubiKey 5 to store private key to encrypt SSL connection? It seems like there is no…

asked May 19 '19 at 13:18

Avihai B

31
2

3

votes

2 answers

Is there a way to authenticate YubiKey from stand-alone C# application without internet connection?

I need some way to authenticate a user, or key pair, from YubiKey on an air-gapped PC (no internet connection). Preferably from a C#/.NET application. Essentially, I need to verify that the inserted YubiKey gives user proper authorization to use my…

c# yubico

asked Apr 17 '19 at 19:20

gtSasha

125
1
11

3

votes

0 answers

Using gpg4win in Cygwin | WARNING: unsafe permissions on homedir

I finally managed to configure a yubikey 4 on windows using gpg4win and cygwin. I can run the following command in Cygwin and my yubikey prompts for pin and starts blinking then it does its job properly. echo "$(uname -a)" | gpg --encrypt --sign…

windows cygwin gnupg yubico gpg-agent

asked Jan 20 '18 at 19:43

Navid Molavi

93
1
5

3

votes

1 answer

Possible to prevent PIV export (private keys) from yubikey?

Using the Yubico PIV Tools and YubiKey PIV Manager, I can load my client TLS certificate into the PIV slot and use it for authentication in Firefox. This is great. However... Is there any way to prevent export of the private key of the PIV? As far…

yubico

asked Jun 04 '17 at 23:04

Ryan

1,171
1
10
23

3

votes

1 answer

U2F with multi-facet App ID

We have been directly using U2F on our auth web app with the hostname as our app ID (https://auth.company.com) and that's working fine. However, we'd like to be able to authenticate with the auth server from other apps (and hostnames, e.g.…

fido-u2f yubico

asked Nov 03 '16 at 14:11

Mike Campbell

7,921
2
38
51

3

votes

1 answer

How do I set up YubiKey 2FA on GitHub without a phone?

I have no smartphone and I only carry my cheap dumbphone when I know I might actually need it to contact someone (ie. approximately never). Generally speaking, I have no phone I'd use as a trusted device. I do have a YubiKey Neo and a…

github yubico

asked Jun 17 '16 at 20:05

Alex Davidson

337
1
10

3

votes

1 answer

Javascript / Browser enryption: Use Yubikey

lets say I want to encrypt data inside the browser (via JavaScript, using PGP). Since it is not save to store the keys in the browser (LocalStorage), I want to have them on an external device, like a YubiKey, which provides PGP encryption /…

javascript encryption cryptography yubico

asked May 10 '16 at 18:07

TSM

189
2
9

2

votes

4 answers

WebauthN and Yubikey to generate keys for symmetric encryption in a browser. Is this hack secure?

I understand that WebauthN is designed to perform authentication, but I'd like to use my Yubikey to create symmetric encryption keys to encrypt content on my web browser without relying on a backend server. Here's my approach: During the assertion…

encryption webauthn fido yubico yubikey

asked Nov 26 '21 at 23:48

ucipass

923
1
8
21

2

votes

0 answers

Git GPG signing for multiple authors

Is there a way to verify multiple authors signed a commit using multiple GPG keys. My teams already use Co-Authored-by trailers in the git commit message. For compliance reasons I'm hoping to verify each attributed author using GPG signing(GPG +…

git github gpg-signature yubico

asked Sep 07 '21 at 15:48

dane

398
1
2
7

2

votes

1 answer

Django and Yubikey integrate

I want to integrate Yubikey with my Django application. Whenever I try to add a 2FA Yubikey: localhost:8080/account/two_factor/setup/ I get a 403 HTTP Forbidden error. How do I implement the Yubikey in Django, because when I use these tutorials…

python django two-factor-authentication yubico

asked Jul 20 '20 at 14:10

Igoranze

1,506
13
35

2

votes

1 answer

Signing a Certificate Signing Request using a CA stored on a Yubikey

I want to sign a Certificate Signing Request using the private key & the certificate stored in the PIV Digital Signature slot. I'm using the latest release of OpenSC for MacOS(https://github.com/OpenSC/OpenSC/releases/tag/0.19.0). I have tried the…

openssl pkcs#11 csr yubico openssl-engine

asked Jul 22 '19 at 07:43

Sprite

350
1
5
17

2

votes

0 answers

How can i encypt and decrypt file using yubico (public and private key)

I try to encrypt a file using yubico public key and decrypt using yubico private key. But I am unable to generate private and public key from yubico. I already develop some example of fido2 with yubico. but it is not working properly.

javascript node.js express fido-u2f yubico

asked Mar 29 '19 at 13:13

Solanki ram

77
2
10

2

votes

1 answer

Duplicate Registration of the same Yubikey U2F device

I have a doubt. I have set a complete solution around the Yubico U2F keys. But now, I cannot stop duplicate registration of the same device for an user for the same app id. While checking on the keyhandles on my database they show different values…

fido-u2f yubico

asked Feb 12 '19 at 05:02

Sidharth Satheesh

21
2

2

votes

2 answers

Yubico / Webauthn & Resident Key

I've a Yubikey 5, and I am working on OSX & Chrome 72. According to the documentation, I should have up to 25 resident Keys…

google-chrome yubico webauthn

asked Feb 03 '19 at 17:19

Gildas Cuisinier

233
2
8

2

votes

2 answers

FIDO2 hardware hits the shelves, but what are the limitations it brings with it?

I read every Yubico publication and looked at the webinars, but they keep some information unsaid for some reason. When using the Yubikey 5 for Single Strong Factor, they claim the authenticator (I guess they mean the physical key's CPU) generates a…

credential-manager yubico fido

asked Oct 11 '18 at 10:21

Ira

193
4

Questions tagged [yubico]