kr-u2f icon indicating copy to clipboard operation
kr-u2f copied to clipboard

Published 20 hours ago verified publisher icon kryptco

Only useable with Desktop Browsers

Open kolbma opened this issue 5 years ago • 7 comments

The problem with 2FA is that you will need a desktop browser when switching this on. You can't access Facebook, Google, Github etc. any longer with a Smartphone/Tablet Browser because there exists no AddOns. Where is the mobile first approach...

kolbma avatar Oct 13 '18 19:10 kolbma

Which site are you having trouble with, and what type of phone do you have?

kcking avatar Oct 13 '18 19:10 kcking

Well, the site doesn't matter. I've an android phone and an android tablet. I use chrome mobile or firefox klar/focus there. I can not pair these browsers. There is no plugin available/possible.

kolbma avatar Oct 14 '18 08:10 kolbma

You do not need to pair, krypton being installed is sufficient. The android chrome browser can handle u2f links and direct them to the Krypton app. It works for at least both Google and GitHub (you may have to request the desktop site). I’m not sure if firefox knows how to handle intent links on android. On Sun, Oct 14, 2018 at 4:41 AM arlecchino [email protected] wrote:

Well, the site doesn't matter. I've a android phone and a android tablet. I use chrome mobile or firefox klar/focus there. I can not pair these browser. There is no plugin available/possible.

— You are receiving this because you commented.

Reply to this email directly, view it on GitHub https://github.com/kryptco/kr-u2f/issues/15#issuecomment-429607214, or mute the thread https://github.com/notifications/unsubscribe-auth/ABSUU-kSXIwTnY40BT2HNm0XbAFBxuxvks5ukviugaJpZM4Xax3H .

kcking avatar Oct 14 '18 08:10 kcking

But the keys are on the smartphone. How should this work on the tablet if it is not paired?!

kolbma avatar Oct 14 '18 14:10 kolbma

Ah yes a tablet can only use a Krypton key that exists in an instance of Krypton installed on that device. Currently the way to do this would be to pair your tablet with a computer and register the u2f key from there. Then you can sign in on your tablet as you would on the phone.

We are working on a way to synchronize keys between devices which will make this process much easier for you in the future.

kcking avatar Oct 15 '18 15:10 kcking

@kcking how will that be possible if the entire point of using the Secure Enclave is to ensure nobody can read (and therefore backup) the private keys? Wouldn't it make more sense to have secondary Krypton installations act like the browser extensions do, so it can be used on other Android devices like tablets that support u2f:// links (IIRC), but sending all U2F requests to the primary phone?

I suppose that wouldn't support key backups, but I'd take higher security over private key backups any day.

jonaharagon avatar Nov 09 '18 22:11 jonaharagon

I've found that Krypton doesn't work on Chrome Beta for Android. I've tried Github, and Google (in Incognito). Github just keeps waiting for a button press, and Google keeps saying that something went wrong with the security key, and suggests I try a different authentication method.

viggy96 avatar Nov 28 '18 20:11 viggy96