Uploaded image for project: 'EJBCA'
  1. EJBCA
  2. ECA-6408

Investigate support for U2F, FIDO2 ect.

    Details

      Description

      Investigate how we can use FIDO2 tokens in EJBCA, to replace PKCS11 based tokens. WebAuthn support (implementing FIDO2?) it now built in to both Firefox and Chrome (starting with Chrome 67).

      https://en.wikipedia.org/wiki/WebAuthn

      Yubikey supports FIDO2 and released a new FIPS 140-2 certified token today.

      https://fidoalliance.org/specs/fido-v2.0-rd-20170927/fido-overview-v2.0-rd-20170927.html

      Google has its own Titan key:
      https://cloud.google.com/titan-security-key/

      Solo Open Source FIDO key:
      https://github.com/SoloKeysSec/solo

      Example of enrollment flow: https://demo.yubico.com/webauthn/

        Attachments

          Issue Links

            Activity

              People

              Assignee:
              Unassigned
              Reporter:
              bastianf Bastian Fredriksson
              Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

                Dates

                Created:
                Updated: