Bi-directional NFC support coming up on iOS 13

[brainstorm]

https://www.yubico.com/2019/09/yubico-ios-authentication-expands-to-include-nfc/

So at least the FAQ on the kickstarter page should change?:

And also perhaps explore what would be required to have it implemented?

[timetoseek]

FYI, I am running the most recent iOS13.1 beta 4, and see that NFC has been removed from the current beta (NFC was available in an earlier beta, I believe in Shortcuts). Hopefully NFC will be back in the final iOS 13 release. 🤞

[linuxmail]

hi,

did anybody found something on the released version ? I tried to use my Tap Solo with the brave browser, but nothing happens.

[brainstorm]

From:

https://www.brianmadden.com/opinion/Safari-13-brings-WebAuthn-and-drops-legacy-browser-extensions

Now, if you use Safari, you can use hardware keys like the Yubikey or Titan Security Key as part of your organization’s MFA, or in some select cases (like Google accounts), make it the only authentication method. I tested it out and it works just like any other FIDO2-compliant browser, just know you still can’t use hardware keys with mobile Safari.

I'm skeptical that Apple will ever support Solo Keys after seeing this:

https://www.yubico.com/press-releases/yubico-announces-yubikey-for-lightning-partner-preview/

So TL;DR, some hardware keys are more secure than others (even if they pretty much use the same underlying ICs and microcode) and Apple is being as proprietary and $$$-driven via partnerships and certifications as usual.

I hope someone can prove me wrong though, happy to be surprised :-S

[lodev]

iOS 13.3 beta 2 supports NFC WebAuthn keys, according to the release notes (https://developer.apple.com/documentation/ios_ipados_release_notes/ios_ipados_13_3_beta_2_release_notes) , and this Twitter thread: https://twitter.com/bruienne/status/1191848018884075521

I updated my iPhone 7 to 13.3 beta 2, and it doesn't seem to work with my NFC+USB C Solo key. (Firmware 3.0.0)

If anyone else has other experiences I'd be interested to hear them.

[jorng]

I've gotten it to work on 13.3, but it seems inconsistent. I have to try multiple times holding it at the top of the phone, and can't seem to figure out what gets it to work (when it does)

[linuxmail]

But it sounds, that there is a way. Where is the NFC antenna on the phone ?

[Skill3t]

Hey i have iOS 13.3 and i tried it with the https://webauthn.io/ it worked great but with Github login it was not possible with the solokey tap. I have also a YubiKey 5 NFC this key works fine with iOS 13.3 on github login. I tried with the deliverd firmeware as well as the FW 3.0.1. on the Solokey. Any idears what to do to get it running with iOS?

[linuxmail]

hi,

Hey i have iOS 13.3 and i tried it with the https://webauthn.io/ it worked great but with Github login it was not possible with the solokey tap. I have also a YubiKey 5 NFC this key works fine with iOS 13.3 on github login. I tried with the deliverd firmeware as well as the FW 3.0.1. on the Solokey. Any idears what to do to get it running with iOS?

I was able to login with my Tap to login into Github. I had to put the tap on the upper right corner and then, it was recognized.

[jorng]

Same here. Works for me. Just hold it there for 5-10 seconds.

[markusmaker]

Antenna placement : https://www.sosav.com/guides/mobiles/iphone/iphone8/nfc-antenna/

Looks like front of device in center.

[brainstorm]

Can anybody walk me through this on iOS 13.3 (perhaps which options enabled & screenshots)?

I'm currently getting "This browser is not supported" on both Safari and Firefox Mobile with webauthn.io :-S

[jorng]

It should be on by default, but you can check in:

Settings -> Safari -> Advanced -> Experimental Features

Make sure Web Authentication is enabled.

[brainstorm]

Thanks @jorng.

Yes, I made sure that is indeed enabled, the browser is not supported is not there anymore, but I cannot get past this popup message:

Which asks (in Swedish) to scan the security key but moving around the Solo key on the back of my iPhone 6S does not work :/

[Skill3t]

You need an iPhone 7 or newer. The NFC chip in your 6s is more or less just for payment. And background NFC needs an iPhone XS or XR but this is not needed für Fido2. Sorry for that bad news.

[brainstorm]

Ahh, gotcha, thanks @Skill3t ! ;)