FIDO2 support on Android


#1

This sounds good and bad at the same time. I love the idea of not passing credentials that can be compromised. On the other hand I’m not sure if I like the idea of not needing to enter credentials to get on websites and apps.

https://fidoalliance.org/fido2/


#2

Yubikey Neo offers multiple 2FA types. Check out the web site and youtube videos.


#3

@g-aitc I did see that their 5th gen keys are FIDO2.

It makes sense to me to have a secondary device that you use for authentication. With the phones, the phone is the device. I might be missing something, but having the device that you’re using to access whatever being the authenticator seems a little insecure.


#4

Yes you did, FIDO2 is supported. YubiKey 5 Series supports multiple protocols including FIDO2, U2F, PIV, Yubico OTP, and OATH HOTP. for more technical info http://cybersimplenoid.com/ and https://developers.yubico.com/yubico-pam/