Duo Security announces U2F authentication support

Discussion in 'privacy technology' started by Dermot7, Oct 21, 2014.

  1. Dermot7

    Dermot7 Registered Member

    Joined:
    Dec 20, 2009
    Posts:
    3,196
    Location:
    Surrey, England.
  2. ronjor

    ronjor Global Moderator

    Joined:
    Jul 21, 2003
    Posts:
    57,770
    Location:
    Texas
    http://krebsonsecurity.com/2014/10/google-accounts-now-support-security-keys
     
  3. deBoetie

    deBoetie Registered Member

    Joined:
    Aug 7, 2013
    Posts:
    1,150
    Location:
    UK
    Thanks, I see Duo are using the Yubikey U2F devices I've referenced in this thread:

    https://www.wilderssecurity.com/thre...authentication-key-released-by-yubico.369367/

    It's great news that Google is supporting this for 2FA, as it's the only 2FA standard that even remotely seems to respect your privacy, you mint a new secret for each site which is stored on the key (or proxied). I'll likely get a couple and report back on it, my understanding is that Chrome is the only browser supporting U2F right now. Paypal and Mastercard are also in the Fido Alliance.

    I suppose though, unless MS and Apple also join in, this will only be yet another language of authentication babel.
     
Loading...