Extracting ctap as an external crate and implementing a virtual FIDO2 device for QEMU

google / OpenSK

OpenSK is an open-source implementation for security keys written in Rust that supports both FIDO U2F and FIDO2 standards.

Apache License 2.0

2.98k stars 289 forks source link

Extracting ctap as an external crate and implementing a virtual FIDO2 device for QEMU #288

Open alishir opened 3 years ago

alishir commented 3 years ago

Hello,

As you know QEMU supports implementing new virtual devices and currently supports a virtual U2F device via well defined extensible interface. If we extract ctap crate as an external crate we could easily implement a FIDO2 virtual device for QEMU. AFAIK the QEMU community is open to using third-party libraries written in Rust.

What is your opinion on this?

kaczmarczyck commented 3 years ago

Hi!

We are open to the idea of a ctap crate. The current implementation does not cleanly separate the logic, transports and drivers. We would need to design an interface that works for QEMU and a few more.

This work is not planned as of now, but we do see the benefit.