This idea is interesting to me because hell making my own stuff is fun. I have access to quite a few usb keys already so technically I might have the material available. Also my threat model is pretty low so I’m interested in security mostly for fun.

Most methods I have found talk about making a key to secure a computer but I would really like to make something that would do WebAuthn.

There is a neat Git project that shows how to turn a few specific devices into 2FA code prompters/automatic fillers. But in my naive mind that falls short of what I would truly wish to be able to accomplish ie. Stock USB --> WebAuthn/Passkey device.

Has anybody seen anything on the subject?

  • Mario Bariša
    link
    fedilink
    English
    41 year ago

    I don’t think it’s possible due to security keys having dedicated hardware for WebAuthn. I had the same idea before I got my pair of Yubikeys