search

mumble-voip / mumble

Mumble is an open-source, low-latency, high quality voice chat software.
https://www.mumble.info
Other
6.4k stars 1.12k forks source link

PKCS11 support for user authentication #4044

Open jfrederickson opened 4 years ago

jfrederickson commented 4 years ago

Context Certificates represent a user's identity in Mumble, and the consequences of a key compromise in this case are severe. If using Mumble on a machine you do not fully trust, it would be nice to have the ability to use e.g. a Yubikey to authenticate to Mumble servers without exposing the private key to the machine you're using. (This would also make it fairly easy to carry a Mumble identity with you between machines if you already regularly use a Yubikey, as I do.)

Describe the feature you have in mind If a PKCS11 smartcard with an installed certificate is inserted, Mumble would allow users to use that for authentication rather than a cert/key on disk.

Describe alternatives you've considered FIDO2 is a possible alternative, and FIDO2 keys are typically cheaper than PKCS11 smartcards. However, Mumble's auth system is already heavily reliant on X509 client certs; PKCS11 seems like it fits in better with the way Mumble works right now.

Krzmbrzl commented 4 years ago

I agree that this does sound useful to have and it might not even be that hard to implement (don't know that though). However I have the feeling that we won't have time to implement this any time soon.

Thus if you or someone else that might stumble upon this issue want to give it a shot, we'd be glad to accept and help with a PullRequest for this :)

davidebeatrici commented 4 years ago

Right now Mumble saves the certificate in the user's "documents" folder after generating it.

We should ask the user whether he wants to do that and allow to specify a different path instead.

stman commented 1 month ago

Any news for this feature ? This would be really great to have it, because it would be a strong way to prevent MITM. AI voice based MITM attacks are terrible. This is a simple way to offer a first good level of protection against identity theft with mumble. Writting certificates on disks is a suicide so much our PC's, BIOS/UEFI/OS are pretty unsecure and full of backdoors.

Krzmbrzl commented 1 month ago

No news, no. There are also no plans to implement this right now. Thus, this feature is likely dependent on an external contributor working on it.