You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
solo key verify works by getting the attestation off of the Solo and the CTAP2 standard mandates using a PIN if set for creating credentials (which is how you get the attestation data), so far so normal.
but using CTAP1 also known as U2F also nets an attestation, with also a special certificate only secure Solos have. also U2F does not have any means for User Verification so User Presence is the only way to obtain consent, thereby eliminating the requirement for a PIN, which reduces user friction
This discussion was converted from issue #73 on June 18, 2020 07:33.
Heading
Bold
Italic
Quote
Code
Link
Numbered list
Unordered list
Task list
Attach files
Mention
Reference
Menu
reacted with thumbs up emoji reacted with thumbs down emoji reacted with laugh emoji reacted with hooray emoji reacted with confused emoji reacted with heart emoji reacted with rocket emoji reacted with eyes emoji
-
solo key verify works by getting the attestation off of the Solo and the CTAP2 standard mandates using a PIN if set for creating credentials (which is how you get the attestation data), so far so normal.
but using CTAP1 also known as U2F also nets an attestation, with also a special certificate only secure Solos have. also U2F does not have any means for User Verification so User Presence is the only way to obtain consent, thereby eliminating the requirement for a PIN, which reduces user friction
Beta Was this translation helpful? Give feedback.
All reactions