zlacker

[parent] [thread] 2 comments
1. former+(OP)[view] [source] 2024-12-27 12:15:35
> Yeah, a fair point (though if you can't manage keys one by one that seems a massive usability issue and oversight with no safe path to resolution).

You can, it’s part of CTAP2 and various apps like Yubico Authenticator are available to do it.

It’s not user-friendly, but it is possible.

replies(1): >>g_p+us1
2. g_p+us1[view] [source] 2024-12-27 23:48:36
>>former+(OP)
Thanks - yeah it seems like this is supported in FIDO 2.1 (but not 2.0). I suspect this is only implemented in Yubikey 5.7 and above.

Once the technology is there to support it, hopefully the user experience part can be improved with time.

Ref in the standard - https://fidoalliance.org/specs/fido-v2.1-ps-20210615/fido-cl...

replies(1): >>former+6D4
◧◩
3. former+6D4[view] [source] [discussion] 2024-12-29 11:45:49
>>g_p+us1
It's available since at least Yubikey 5.2 (~2020).

edit: Indeed, that's the firmware revision credential management was added, per this blog post: https://www.yubico.com/blog/whats-new-in-yubikey-firmware-5-...

I'm honestly very annoyed with Yubico that they just froze their product line-up circa 2018 and pretend the major changes in firmware (5.2, 5.7) don't matter at all and don't warrant a separate SKU.

[go to top]