On Fri, Jun 12, 2026, at 8:03 PM, Vitaly Zaitsev via devel wrote: > On 11/06/2026 11:04, Daniel P. Berrangé wrote: >> Will we ever augment OTP support with FIDO2/U2F to enable use >> of hardware tokens ? > > FIDO2 is a proprietary black box. There are no software implementations > due to mandatory certification by the FIDO Alliance.
The specifications are open. There are free and open source implementations that runs on open source hardware like https://github.com/trussed-dev/fido-authenticator There are also software implementations that runs on PC like https://codeberg.org/r4gus/keylib and others. Devices don't have to be certificated - but the certification gives you extra assurance on interoperability. Kan-Ru -- _______________________________________________ devel mailing list -- [email protected] To unsubscribe send an email to [email protected] Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/[email protected] Do not reply to spam, report it: https://forge.fedoraproject.org/infra/tickets/issues/new
