Yubico features

[ghost]

Implement Yubico features if required:

• [x] FIDO2
• [ ] Yubico OTP
• [ ] HOTP/TOTP (Yubico Authenticator)
• [x] U2F
• [ ] HMAC-SHA1
• [ ] Different smart cards
• [ ] YubiHSM2
• [ ] Static password/key storage
• Other? https://developers.yubico.com/

[aveao]

There's also static password storage.

[dsseng]

Password and GPG/SSH key storage will be very useful

[vwbusguy]

I would love to see TOTP support similar to Yubico Authenticator. The key would need to store TOTP registration codes and labels and be able to present that to a client that can generate the tokens. The simplest way to generate the code for most cases is using oathtool: oathtool --totp -b <TOTP registration code>.

[trscavo]

On Thu, Jun 6, 2019 at 1:08 PM Scott Williams notifications@github.com wrote:

I would love to see TOTP support similar to Yubico Authenticator.

OATH TOTP requires a clock, and a clock requires a battery, which leads to a completely different kind of authenticator. I think there are other features that are more valuable. Just my two cents.

Tom

[nogweii]

The existing Yubikeys support TOTP but without a battery -- which is why it only works when paired with something (phone or desktop/laptop running Yubico's apps), and can not generate a TOTP codes alone. (Also, no display!)

I'd also love to see the Solo USB-C come out with TOTP support.

[markusC64]

I'd like to vote for "HOTP/TOTP (Yubico Authenticator)".

[mietzen]

I'm voting for HMAC-SHA1