Open kspearrin opened 5 years ago
I did a quick glance at the demo code from Yubico and it seems that the signature check is pretty much the same. The only thing I noticed is they added support for hashing RSA. The encryption algorithm is still secp256r1.
I took a look at the Yubico repo of webauth and it seems the client responses are different from U2F. I will have to update the library to except other responses as well as additional crypto support.
Any estimate if and when this will be ready? Are contributions possible? Or should we look for another library?
@markusschaber The FIDO2 spec is far more complicated than U2F so I don't have an ETA when it will be ready. This is an open source project so contributions are welcome. I found the following project but it's in alpha https://github.com/abergs/fido2-net-lib
Do you know if it is possible to use U2F_Core on the server for performing the same U2F operations while using WenAuthn APIs on the client? We are looking to migrate our clients to WebAuthn and I am not sure if it will work.