Bug 412782 - Implement FIDO authentication via kde connect
Summary: Implement FIDO authentication via kde connect
Status: REPORTED
Alias: None
Product: kdeconnect
Classification: Applications
Component: common (other bugs)
Version First Reported In: 1.10
Platform: Other Linux
: NOR normal
Target Milestone: ---
Assignee: Albert Vaca Cintora
URL:
Keywords:
Depends on:
Blocks:
 
Reported: 2019-10-09 19:29 UTC by KOLANICH
Modified: 2019-10-09 19:29 UTC (History)
0 users

See Also:
Latest Commit:
Version Fixed/Implemented In:
Sentry Crash Report:

Attachments
Add an attachment

Note You need to log in before you can comment on or make changes to this bug.
Description KOLANICH 2019-10-09 19:29:00 UTC 
https://github.com/danstiner/rust-u2f implements pure software u2f for WebAuthn.

I think that it may be possible to do better. For example implement the storage of secrets on a phone. When a phone is paired to a computer and KDEConnect on phone is active and the browser requests authn from desktop part of KDEConnect using u2f, it forwards the request to phone. The phone does the job and forward the response to desktop. On phone part either a pure software form can be used, or, for example, a usb or nfc one.

Or it may even make sense to just implement the following stack (each component can be usable on its own):
1. ssh over kdeconnect
2. usbip over ssh
3. soft-u2f over usbip
4. u2f over softu2f