Announcement

Collapse
No announcement yet.

YubiKey 5 Series Brings FIDO2 Support, NFC Capability

Collapse
X
  • Filter
  • Time
  • Show
Clear All
new posts

  • YubiKey 5 Series Brings FIDO2 Support, NFC Capability

    Phoronix: YubiKey 5 Series Brings FIDO2 Support, NFC Capability

    While last week Purism entered into the hardware security space with the Librem Key as a USB-based smart card, industry veteran Yubico today announced their YubiKey 5 Series...

    http://www.phoronix.com/scan.php?pag...bico-YubiKey-5

  • #2
    Is its firmware fully open source?

    Comment


    • #3
      Originally posted by dlq84 View Post
      Is its firmware fully open source?
      Unless what they stated here changed lately, no. https://www.yubico.com/2016/05/secur...s-open-source/
      • The YubiKey hardware with its integral firmware has never been open sourced, whereas almost all of the supporting applications are open source.
      • The YubiKey NEO is a two-chip design. There is one “non-secure” USB interface controller and one secure crypto processor, which runs Java Card (JCOP 2.4.2 R1). There is a clear security boundary between these two chips. This platform is limited to RSA with key lengths up to 2048 bits and ECC up to 320 bits.
      • The YubiKey 4 is a single-chip design without a Java Card/Global Platform environment, featuring RSA with key lengths up to 4096 bits and ECC up to 521 bits. Yubico has developed the firmware from the ground up. These devices are loaded by Yubico and cannot be updated.


      Comment


      • #4
        Originally posted by starshipeleven View Post
        Unless what they stated here changed lately, no. https://www.yubico.com/2016/05/secur...s-open-source/
        • The YubiKey hardware with its integral firmware has never been open sourced, whereas almost all of the supporting applications are open source.
        • The YubiKey NEO is a two-chip design. There is one “non-secure” USB interface controller and one secure crypto processor, which runs Java Card (JCOP 2.4.2 R1). There is a clear security boundary between these two chips. This platform is limited to RSA with key lengths up to 2048 bits and ECC up to 320 bits.
        • The YubiKey 4 is a single-chip design without a Java Card/Global Platform environment, featuring RSA with key lengths up to 4096 bits and ECC up to 521 bits. Yubico has developed the firmware from the ground up. These devices are loaded by Yubico and cannot be updated.

        This was the reason I asked, they did get some criticism regarding yubikey 4 so maybe they have made some changes. We'll see.

        Comment


        • #5
          Originally posted by starshipeleven View Post
          Unless what they stated here changed lately, no. https://www.yubico.com/2016/05/secur...s-open-source/
          • The YubiKey hardware with its integral firmware has never been open sourced, whereas almost all of the supporting applications are open source.
          • The YubiKey NEO is a two-chip design. There is one “non-secure” USB interface controller and one secure crypto processor, which runs Java Card (JCOP 2.4.2 R1). There is a clear security boundary between these two chips. This platform is limited to RSA with key lengths up to 2048 bits and ECC up to 320 bits.
          • The YubiKey 4 is a single-chip design without a Java Card/Global Platform environment, featuring RSA with key lengths up to 4096 bits and ECC up to 521 bits. Yubico has developed the firmware from the ground up. These devices are loaded by Yubico and cannot be updated.

          The new 5 NEO added 'RSA 4096 (PGP)'.

          Comment


          • #6
            Originally posted by dlq84 View Post
            Is its firmware fully open source?
            You can always use Nitrokey (https://www.nitrokey.com/).
            They plan to implement FIDO2, maybe soon they will succeed.

            "Hardware and software are available as open source and Free Software".

            Comment

            Working...
            X