flipperzero-firmware icon indicating copy to clipboard operation
flipperzero-firmware copied to clipboard

Published 20 hours ago verified publisher icon flipperdevices

U2F Security Key not supported in Windows 11

Open SystemOfTheCSGO opened this issue 2 years ago • 14 comments
trafficstars

Describe the enhancement you're suggesting.

The current module of security key U2F is not supported by windows.

Reproduction

Use the firmware as usual, get a clean install of windows 11, try to link the security key from flipper to windows, you will get a error: this device is not certified.

Anything else?

This can be bypassed emulating headers of a certified key. (I’ve seen it done before, at least a homemade microsoft certified’ seckey.)

SystemOfTheCSGO avatar Jul 14 '23 08:07 SystemOfTheCSGO

Hello, got a few questions about the build that you are using, is that corporate build or any beta version by any chance?

doomwastaken avatar Jul 17 '23 10:07 doomwastaken

The key for MS products like Windows, O365 needs to be FIDO2, as far as I know flipper is FIDO1. Any chance for FIDO2 on flipper hardware?

kamilskrzypek4 avatar Jul 19 '23 16:07 kamilskrzypek4

The key for MS products like Windows, O365 needs to be FIDO2, as far as I know flipper is FIDO1. Any chance for FIDO2 on flipper hardware?

I feel like it would be a security risk, especially since FIDO2 is usually a passwordless login. Definitely safer to get a separate security key for it.

zhiyan114 avatar Jul 19 '23 19:07 zhiyan114

We'll try to pack it in future updates.

skotopes avatar Aug 01 '23 04:08 skotopes

We'll try to pack it in future updates.

Any news?

SolarSciencePup avatar Sep 24 '23 06:09 SolarSciencePup

Not really, plans are to complete NFC refactoring, then BadUSB/BadUART, and then U2F/FIDO.

skotopes avatar Sep 26 '23 03:09 skotopes

Any news? this would help me out since now i need this for U2F on work repos

Mechcondrid avatar Jan 10 '24 17:01 Mechcondrid

i am also interested in this

Kevin1904 avatar Feb 08 '24 00:02 Kevin1904

Hey there. I can help with developing U2F/FIDO :) But I don't know how work U2F in Windows :(

dol4inart avatar Feb 22 '24 14:02 dol4inart

I just wanted to chime in and say that I'm really looking forward to FIDO2 on the Flipper as well.

Adding NFC support to the U2F/FIDO app would be extremely helpful, too, since I authenticate from an iPhone more often than a laptop/desktop at this point.

alexh3791 avatar Feb 28 '24 18:02 alexh3791

Does the Flipper (even with XFW) really not support FIDO2? It does not work on my iPhone via lightning cable I‘m so disappointed like tf

randoassuser avatar Mar 24 '24 12:03 randoassuser

Not really, plans are to complete NFC refactoring, then BadUSB/BadUART, and then U2F/FIDO.

From what I see searching around the repo, NFC refactoring has been completed, I may be wrong and/or misinterpreted, I'm not sure about whether BadUSB/BadUART has been, but if so, is FIDO2 support still in the pipeline?

bomkz avatar Jul 24 '24 14:07 bomkz

In a long term FIDO2 is on the roadmap. But right now no one is working on it and we also'd like to have proper secure enclave before going further.

skotopes avatar Jul 24 '24 15:07 skotopes