Skip to content

Latest commit

 

History

History
113 lines (91 loc) · 10.2 KB

README.md

File metadata and controls

113 lines (91 loc) · 10.2 KB

WebAuthn Awesome Awesome

A curated list of awesome WebAuthn/FIDO2 resources

Hardware

  • FIDO COMPLIANT OnlyKey - OnlyKey is an open source FIDO2 security key, a hardware password manager, and supports additional features like passwordless SSH login and OpenPGP. You can get one at https://onlykey.io
  • FIDO COMPLIANT Conor Patrick: U2F Zero - U2F Zero is an open source U2F token for 2 factor authentication.
  • FIDO COMPLIANT SoloKeys - Solo is an open source FIDO2 security key, and you can get one at solokeys.com
  • Trezor - Trezor is an open source hardware wallet with FIDO/U2F and FIDO2/WebAuthn functionality.

Demos

Server Libs

Client Libs

Resources

Tutorials

Articles

Slides

Books

  • Getting started with WebAuthn - コミックマーケット95で頒布した同人誌「Getting started with WebAuthn」の電子版(PDF)です。

Other

FAQ

  • What is FIDO CERTIFIED?

FIDO CERTIFIED means that implementation has passed FIDO conformance tools, passed interoperability even, and has achieved official FIDO Alliance certification.

  • What is FIDO COMPLIANT?

FIDO COMPLIANT means that implementation has passed FIDO conformance tools, thus can claim that it is conformant with FIDO2 specifications. If you want to get access to the conformance tools, you can do it here https://fidoalliance.org/certification/functional-certification/conformance/. If you have passed conformance tools, send me a DM or a tweet @herrjemand with a screenshot of passing the tests.

  • FIDO2 or WebAuthn?

FIDO2 is the name of the standard. WebAuthn is just browser JS API to talk to the authenticators. So correct way to call your server is "FIDO2 Server" and to say "Authentication with FIDO2".

License

Creative Commons License
This work is licensed under a Creative Commons Attribution 4.0 International License.