Nicolas Stalder

@hardfalcon: Yes, `ssh-agent` can cache Ed25519 keys that are in some file. As far as I know (please correct me if I'm wrong, because I'd love to be!), there is...

There are a bunch of issues with TOTP in the "obvious/direct" implementation - there needs to be a companion "app" that injects time - each site has its own TOTP...

We are certainly open to such collaborations, yes. Will need someone to drive it.

Regarding the roadmap, out of nowhere, SSH is suddenly "done", thanks to @djmdjm's great work! - announcement/instructions: https://marc.info/?l=openssh-unix-dev&m=157259802529972&w=2 - proof-of-concept: https://asciinema.org/a/278411 - retweet: https://twitter.com/SoloKeysSec/status/1190257586664288256 :hugs: (It will of course take...

No, they're roaming FIDO authenticators. Maybe https://webauthn.guide/ is the best entry point. The point of WebAuthn/FIDO being to get rid of passwords.

Yeah that's crazy! One *bit* even! No Ed25519 so far, someone would need to rewrite the storage layer, which currently assumes only one key type, P256. Note that this new...

> This isn't a surprising property of ECDSA, it's been well known that single-bit biases in the nonce selection (or the private key for that matter) result in complete breakage...

Well :) Sign up at https://solokeys.com/v2 for our new key, which will launch with Ed255 support (the new extensible architecture in Rust makes additions like these easier); meanwhile there is...

To clarify the counter issue: In U2F, it is required, in FIDO2 (which supersedes U2F and browsers actually implement), the standard allows always using counter = 0 (https://github.com/dicekeys/seeding-webauthn#setting-the-signature-counter). Of course,...

Not sure this was ever on a roadmap, what I know is I was long opposed to it out of principle ;) That said, I recently had an idea how...