FIDO with eIAM admin.ch

[flo17]

Expected behavior

Registering the MiniBLE as Fido device on eiam.admin.ch

Actual behavior

The website returns an error indicating that the Passkey does not meet the certification

Step by step guide to reproduce the problem

1. Reach this page
2. Log on/Create a new account
3. Follow the steps to add a new second factors authentication devices

Tested with Firefox and Edge Also I noticed that Firefox is asking for extended information about the security key which I don't remember having to allow for other websites :

Information pages from admin.ch :

• Instructions: CH-LOGIN - Adding a FIDO security key as Second Factor
• Security keys that can be used in AGOV

I also noticed that Mooltipass devices are not listed in https://fidoalliance.org/metadata/, online list available here : https://opotonniee.github.io/fido-mds-explorer/. Do some sites control metada ?

Firmware Version

AUX MCU version: 0.74 Main MCU version: 0.86 Bundle version: 13

Moolticute Version - If Involved

Tested with v1.03.0 and v1.04.0

Operating System

Mention if you are using either:

• Windows 11

[limpkin]

I'm fairly certain this is due to the fact that we are self-certified - see https://github.com/mooltipass/minible/issues/304