kcking
commented
5 years ago Which site are you having trouble with, and what type of phone do you have?
Open kolbma opened 5 years ago
kcking
commented
5 years ago Which site are you having trouble with, and what type of phone do you have?
kolbma
commented
5 years ago Well, the site doesn't matter. I've an android phone and an android tablet. I use chrome mobile or firefox klar/focus there. I can not pair these browsers. There is no plugin available/possible.
kcking
commented
5 years ago You do not need to pair, krypton being installed is sufficient. The android chrome browser can handle u2f links and direct them to the Krypton app. It works for at least both Google and GitHub (you may have to request the desktop site). I’m not sure if firefox knows how to handle intent links on android. On Sun, Oct 14, 2018 at 4:41 AM arlecchino notifications@github.com wrote:
Well, the site doesn't matter. I've a android phone and a android tablet. I use chrome mobile or firefox klar/focus there. I can not pair these browser. There is no plugin available/possible.
— You are receiving this because you commented.
Reply to this email directly, view it on GitHub https://github.com/kryptco/kr-u2f/issues/15#issuecomment-429607214, or mute the thread https://github.com/notifications/unsubscribe-auth/ABSUU-kSXIwTnY40BT2HNm0XbAFBxuxvks5ukviugaJpZM4Xax3H .
kolbma
commented
5 years ago But the keys are on the smartphone. How should this work on the tablet if it is not paired?!
kcking
commented
5 years ago Ah yes a tablet can only use a Krypton key that exists in an instance of Krypton installed on that device. Currently the way to do this would be to pair your tablet with a computer and register the u2f key from there. Then you can sign in on your tablet as you would on the phone.
We are working on a way to synchronize keys between devices which will make this process much easier for you in the future.
jonaharagon
commented
5 years ago @kcking how will that be possible if the entire point of using the Secure Enclave is to ensure nobody can read (and therefore backup) the private keys? Wouldn't it make more sense to have secondary Krypton installations act like the browser extensions do, so it can be used on other Android devices like tablets that support u2f:// links (IIRC), but sending all U2F requests to the primary phone?
I suppose that wouldn't support key backups, but I'd take higher security over private key backups any day.
viggy96
commented
5 years ago I've found that Krypton doesn't work on Chrome Beta for Android. I've tried Github, and Google (in Incognito). Github just keeps waiting for a button press, and Google keeps saying that something went wrong with the security key, and suggests I try a different authentication method.
The problem with 2FA is that you will need a desktop browser when switching this on. You can't access Facebook, Google, Github etc. any longer with a Smartphone/Tablet Browser because there exists no AddOns. Where is the mobile first approach...