keeweb
/
keeweb
mirror of https://github.com/keeweb/keeweb.git
1
0
Fork 0
Code Issues Releases Wiki Activity

Updated [WIP] FIDO2 hmac otp (markdown)

Dimitri Witkowski 2021-03-31 00:07:26 +02:00
parent 65e59ecd64
commit aa27bf7978
1 changed files with 1 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
[WIP]-FIDO2-hmac-otp.md

@ -1,5 +1,5 @@
This is a draft of using `hmac-otp` FIDO2 feature for YubiKey support in KeeWeb.
❗ This document is not ready and cannot be used for implementation, it has unresolved issues.
❗ This document is not ready and cannot be used for implementation, it has unresolved security issues.
First, some context. [FIDO2 `hmac-secret`](https://fidoalliance.org/specs/fido-v2.1-rd-20210309/fido-client-to-authenticator-protocol-v2.1-rd-20210309.html#sctn-hmac-secret-extension) extension provides support for hashing arbitrary data using a secret attached to a credential stored on the authenticator. It has two inputs: