Passwordless authentication with FIDO2—beyond just the web
FIDO2 is a standard for authenticating users without the need for passwords. While the technology has been introduced mainly to protect accounts on web sites, it's also useful for other purposes, such as logging into Linux systems. The same technology can even be used beyond authentication, for example to sign files or Git commits. A couple of talks at FOSDEM 2023 in Brussels presented the possibilities for Linux users.
The FIDO2 standard is a joint effort between the FIDO Alliance (FIDO stands for Fast Identity Online) and the World Wide Web Consortium (W3C) to develop standards for strong authentication. Users can securely authenticate themselves with a FIDO2 security key (a hardware token), which is more convenient, faster, and more secure than traditional password-based authentication. The security key can ask the user to touch a button or enter a PIN for authentication; alternatively, it can include a fingerprint reader or other means for biometric authentication. FIDO2 can be used as an extra factor added to a traditional password as part of multi-factor authentication or as the only means of authentication. In the latter case, this is called passwordless authentication. Note that a previous FIDO standard, FIDO U2F, was primarily designed for two-factor authentication.
The FIDO2 standard consists of two parts. Web Authentication (WebAuthn) is a W3C recommendation with broad browser support that describes an API allowing web sites to add FIDO2 authentication to their login pages. FIDO's Client to Authenticator Protocol (CTAP) complements WebAuthn by enabling an external authenticator, such as a security key or a mobile phone, to work with the browser. So in short: the browser talks WebAuthn to the server and CTAP to the authenticator device.
Both standards are open, and anyone can manufacture FIDO2 security keys. Various manufacturers have built such hardware tokens. Yubico has some YubiKey models that support FIDO2, as well as a dedicated FIDO2 security key. Feitian, Nitrokey, SoloKeys, and OnlyKey offer FIDO2 tokens too.
How FIDO2 works
FIDO2 is a challenge-response authentication system using asymmetric encryption. When a user registers with a web site, WebAuthn and CTAP work together to make the authenticator (usually a security key) create a new key pair. This is only done after the user proves possession of the authenticator, for example by pressing a button on the device, scanning a finger, or entering a PIN. The private key never leaves the device, while the public key is sent to the web site and associated with the user's account there.
When logging into the web site, the site sends a challenge and its origin (such as its domain) to the web browser using the WebAuthn API. The web browser then sends the challenge to the authenticator using CTAP. The user again proves possession of the authenticator and the device generates a response by signing the challenge with its private key. The response is returned to the web browser (using CTAP) and then to the web site (using WebAuthn). The web site verifies the response against the original challenge using the public key that was used to register the account.
The FIDO2 token can store multiple credentials, each of which consists of a credential ID, the private key, the user ID, and a relying party ID corresponding to the web site's domain. The web site stores the same user ID and credential ID, as well as the public key. The way FIDO2 works protects users against phishing. The web browser only accepts WebAuthn calls using a relying party ID allowed from the web site's domain, and only HTTPS connections are allowed. So when the authenticator signs the challenge, the browser already knows that it's talking to the right web site, because it has verified this using the web site's TLS certificate. As a result, the user doesn't have to check the domain manually.
Using FIDO2 beyond the web
Most of the documentation about FIDO2 is about its use in web sites as if that's the only possible use. An example is the unofficial but helpful WebAuthn Guide made by Duo Security. However, the specifications can be used beyond the web. That was the topic of a talk by Joost van Dijk, a developer advocate at Yubico.
Yubico developed libfido2, a C library and corresponding command-line tools to communicate with a FIDO device (not only the ones made by Yubico) over USB or NFC. It supports the FIDO U2F and FIDO2 protocols. The project is licensed under the BSD 2-clause license and supports Linux, macOS, Windows, OpenBSD, and FreeBSD. Some external projects have built upon libfido2 to create bindings for .NET, Go, Perl, and Rust. Yubico also maintains a Python library, python-fido2, that is tested on Linux, macOS, and Windows.
One of the projects using libfido2 is pam-u2f, also developed by Yubico and included in the repositories of many Linux distributions. It integrates FIDO2 security keys into Pluggable Authentication Modules (PAM), which is the flexible and extensible authentication framework for Linux systems that allows multiple authentication methods to be used. Requiring a credential on a FIDO2 device for a specific purpose is as easy as registering a new credential, saving it in a configuration file, and then adding a reference to pam_u2f.so in the PAM configuration, referring to the file with the saved credential. As an example, Van Dijk showed how to enable two-factor authentication for sudo with a FIDO2 token as the second factor. The pam-u2f documentation shows some other examples.
New types of SSH keys
Another use case Van Dijk described is an SSH key that is backed by a FIDO2 authenticator. OpenSSH 8.2 (released in February 2020) introduced support for FIDO2 security keys, using the libfido2 library under the hood. The challenge-response mechanism works not unlike on the web, but this time the authenticator talks to the ssh client using CTAP, and the ssh client talks to the sshd server using the normal SSH protocol.
To make this work, OpenSSH introduced new public key types "ecdsa-sk" and "ed25519-sk", along with corresponding certificate types. If the user generates a new SSH key pair of one of those types with ssh-keygen, the private key is generated and stored inside the hardware token, together with the relying party ID "ssh:" and optionally a key handle. The authenticator returns the public key and the key handle to ssh-keygen. The program saves the public key in a file as usual, while the file that normally stores the private key now includes the key handle.
Authenticating with this type of key to the SSH server involves a challenge-response mechanism. The SSH server sends a challenge to the client, which sends it to the FIDO2 authenticator. The latter signs the server's challenge with the private key to create a digital signature that is sent to the client and then to the server. The SSH server is able to verify this signature by the corresponding public key known to be associated to the FIDO2 authenticator. The private key never leaves the authenticator during this process, even the ssh client doesn't get access to it. A hardware-backed SSH key may be used like any other key type supported by OpenSSH, as long as the hardware token is attached when the key is used.
Van Dijk showed some examples of what's possible with a hardware-backed SSH key: authenticating to GitHub when cloning a Git repository over SSH, signing Git commits and tags and verifying their signatures, and signing and verifying files.
Unlocking LUKS2 volumes with a hardware token
CTAP also offers the hmac-secret extension, which is supported by most FIDO2 tokens. This is used to retrieve a secret from the authenticator in order to encrypt or decrypt data. To prevent offline attacks, part of the secret (the salt) is held by the client, while the other part is stored on the authenticator. The client hands its salt to the authenticator, the device combines the salt with its own part of the secret using the HMAC-SHA-256 hash-based message authentication (HMAC), and returns the resulting key. Van Dijk showed how to use this key to encrypt data, after which it's safe to delete the key. To decrypt the data later, the client hands the salt back to the authenticator, which regenerates the key from the salt and its own secret.
One application of this hmac-secret extension that Van Dijk demonstrated is in Linux Unified Key Setup (LUKS) disk encryption. Systemd 248 introduced support for unlocking LUKS2 volumes with a FIDO2 security key. After enrolling a FIDO2 authenticator to a LUKS2 encrypted volume, the systemd-cryptsetup component waits for the FIDO2 token to be plugged in at boot, hands it the salt, gets back the key, and unlocks the volume with the key.
FIDO2 security keys instead of smart cards
With all this functionality of FIDO2 security keys, one has to wonder why traditional smart cards or hardware keys implementing OpenPGP aren't enough. These have been used for a long time to store private keys offline for encryption, authentication, signing, and verification. Van Dijk considers that the biggest advantage of FIDO2 security keys is that they are cheaper and more user-friendly.
Open-source support is also improving a lot in many domains. For example, at FOSDEM Red Hat's Alexander Bokovoy gave two talks about his work on integrating FIDO2 in FreeIPA for passwordless authentication for centrally managed users. Under the hood, this also uses the libfido2 library. His colleague Iker Pedrosa has some instructions on his blog.
With Microsoft, Apple, and Google jumping on the FIDO2 bandwagon during the last few years, surely more and more affordable FIDO2 devices will come to market. With software support improving as well, it won't be long before users start replacing their passwords with cheap FIDO2 security keys.
| Index entries for this article | |
|---|---|
| Security | Authentication |
| GuestArticles | Vervloesem, Koen |
| Conference | FOSDEM/2023 |
Posted Feb 21, 2023 21:58 UTC (Tue)
by mss (subscriber, #138799)
[Link] (38 responses)
Posted Feb 21, 2023 22:18 UTC (Tue)
by k8to (guest, #15413)
[Link] (20 responses)
Posted Feb 21, 2023 22:29 UTC (Tue)
by mss (subscriber, #138799)
[Link] (3 responses)
Posted Feb 22, 2023 3:35 UTC (Wed)
by stressinduktion (subscriber, #46452)
[Link] (1 responses)
Something alike is in use in Germany with HBCI/FinTS (same with the electronic id cards). The security class 3 readers have display and pin pad to verify and confirm a transaction's details. Myself, I use a ReinerSCT cyberjack komfort for doing that. Most(?) financial institutes support it, but somehow they are not keen on handing out the necessary cards anymore and instead prefer to use mobile apps to get the confirmations (at least in the consumer sector). Anyway, it is handy in particular for automated processing.
Are there any other countries using a standardized online banking protocol?
Posted Feb 22, 2023 9:58 UTC (Wed)
by MortenSickel (subscriber, #3238)
[Link]
In Norway, we have the bankid system (https://www.bankid.no/en/private/) that is used for more or less all banks and a lot of other places where a secure login is needed. It can be used either by a code generator or a mobile phone app - no plugin devices.
Posted Feb 28, 2023 16:09 UTC (Tue)
by spacefrogg (subscriber, #119608)
[Link]
Posted Feb 22, 2023 3:31 UTC (Wed)
by pabs (subscriber, #43278)
[Link] (14 responses)
Posted Feb 22, 2023 11:42 UTC (Wed)
by Conan_Kudo (subscriber, #103240)
[Link] (10 responses)
Posted Feb 22, 2023 13:38 UTC (Wed)
by mss (subscriber, #138799)
[Link] (9 responses)
Posted Feb 22, 2023 13:57 UTC (Wed)
by Conan_Kudo (subscriber, #103240)
[Link]
Posted Feb 22, 2023 18:03 UTC (Wed)
by Cyberax (✭ supporter ✭, #52523)
[Link] (7 responses)
You need BLE (and maybe the phone camera) for passkeys. Everything else can be disabled.
So in practice you can buy the cheapest possible Android phone without a SIM card, install an OpenSource build there and it would meet your requirements.
Posted Feb 23, 2023 6:10 UTC (Thu)
by pabs (subscriber, #43278)
[Link] (2 responses)
Posted Feb 23, 2023 6:19 UTC (Thu)
by Cyberax (✭ supporter ✭, #52523)
[Link] (1 responses)
But I haven't checked this in a while, I might be lying.
Posted Feb 23, 2023 6:28 UTC (Thu)
by pabs (subscriber, #43278)
[Link]
Posted Feb 23, 2023 13:04 UTC (Thu)
by mss (subscriber, #138799)
[Link] (3 responses)
Posted Feb 23, 2023 21:30 UTC (Thu)
by Cyberax (✭ supporter ✭, #52523)
[Link] (2 responses)
Posted Feb 28, 2023 21:33 UTC (Tue)
by nix (subscriber, #2304)
[Link] (1 responses)
Even without a SIM card, the thing connects enough for voice emergency channels (by law in many countries), which means most of the crazy mobile protocol stack and closed-source crawling-horror baseband processor is up, backdoors and all.
Posted Feb 28, 2023 21:58 UTC (Tue)
by Cyberax (✭ supporter ✭, #52523)
[Link]
So I think that in practice disabling the Internet access should be enough for all, but the most paranoid applications.
Posted Feb 22, 2023 14:40 UTC (Wed)
by smurf (subscriber, #17840)
[Link] (2 responses)
So, cute that it's possible, but when it enables the same security problems 2-factor auth is supposed to fix, probably not a good idea.
Posted Feb 24, 2023 20:37 UTC (Fri)
by hpro (subscriber, #74751)
[Link] (1 responses)
And the vast majority of frauds occur not because users authorise transactions on malicious sites, but because someone calls them pretenting to be the bank and convinces them to authorise an actual login / transaction for their actual bank on their phone to "confirm their identity" or "sort out a minor issue". No mitm needed.
The app now supports scanning a QR to initiate a login, which makes this harder, but still not all use it, so the vast majority of fraud is done through coercion and social engineering, not hacking afaiu.
Posted Feb 25, 2023 15:00 UTC (Sat)
by farnz (subscriber, #17727)
[Link]
Underlying this is the threat model, pairing up a risk with a mitigation. For BankID and similar systems, the risk that's being mitigated is the bank's risk: "if I cannot prove that the user authorised this transaction specifically, I am on the hook for reversing the transaction at my expense, and may be completely out the money that was involved if I cannot reclaim it from the recipient".
In this threat model, fraudulent transactions authorised by the user are absolutely fine - if I can confirm that you really did authorise sending 1,800,000 kr to "Steal Money-Bank Fraudsters", then I'm off the hook, even if you actually meant to send the money to "Stockholm Mercedes-Benz Franchise".
Similarly, FIDO2's threat model is that user-controlled shared secrets (a.k.a. passwords) are too easy to steal from one site and use for access elsewhere, and too hard to change after every use - e.g. plenty of people have the same password for GMail, Amazon and their bank. FIDO2 wants to change this so that authentication is done via a public key authentication protocol, so that even having a keylogger on your GNOME desktop is not enough for me to authenticate as you at a later date.
Posted Feb 22, 2023 4:32 UTC (Wed)
by matthias (subscriber, #94967)
[Link]
Yes, a display on the device. Just in the same way, as I do online banking in Germany. A display shows the account number and amount for an authorized transfer. Doing this with something like FIDO2 would be much nicer than with the devices we currently use, where we have to put in the banking card to do the encryption, then scan the transaction details from the screen*, and afterwards type in a transaction number from the devices screen into the banking website.
And I do actually read this. For small amounts I usually only check the amount, as the possible damage is limited to the amount shown on the display. For large transactions, I also verify the account number.
*newer devices use QR-codes. My device has 5 photo-diodes that scan a flickering code. One of the diodes is used for a clock signal, the other 4 to transfer 4 bits in each clock cycle. A really simple device. All actual cryptography is done inside the banking card and the device only transfers data from the computer screen to the card and the builtin display.
Posted Feb 21, 2023 22:21 UTC (Tue)
by ibukanov (subscriber, #3942)
[Link] (1 responses)
Posted Feb 22, 2023 7:44 UTC (Wed)
by djm (subscriber, #11651)
[Link]
Posted Feb 21, 2023 22:49 UTC (Tue)
by fraetor (subscriber, #161147)
[Link] (1 responses)
On the other hand it is a significant improvement over the current state of affairs, with phishing rife.
An area that I don't think it necessarily improves on is device security, particularly for portable devices. Specifically if my laptop bag is left on the train, it is likely that my FIDO2 token is also in that same bag.
Posted Feb 28, 2023 21:36 UTC (Tue)
by nix (subscriber, #2304)
[Link]
I keep it on my keyring. Anyone who can steal that with enough info to actually use it also knows where I live, and given that my front door key is also on the same ring I then have bigger problems (including physical access to most of the machines protected by the FIDO2 token, but honestly they'd be *in my house* and I'd be more worried about that)
Posted Feb 21, 2023 22:50 UTC (Tue)
by Cyberax (✭ supporter ✭, #52523)
[Link] (4 responses)
That's not true. "Relying party ID" (basically, the domain name) is a part of the CTAP protocol, and the FIDO2 device can display it to the user.
It's not much help if you're using USB keys without any UI, but OS-level WebAuthn subsystem can show the credential details in a pop-up window that can't be controlled by the browser. Ditto for phone authenticators.
Posted Feb 21, 2023 23:11 UTC (Tue)
by mss (subscriber, #138799)
[Link] (3 responses)
Posted Feb 22, 2023 3:38 UTC (Wed)
by pabs (subscriber, #43278)
[Link]
https://github.com/bulwarkid/virtual-fido
Posted Feb 22, 2023 5:40 UTC (Wed)
by Cyberax (✭ supporter ✭, #52523)
[Link]
It's not possible with X11, but Wayland already does this. A Wayland client such as a browser doesn't have access to other clients, including the daemon process that handles the FIDO2 events.
The browser will need to be additionally confined to disallow it access to other stuff. But it already should be mandatory. And it's already the case with Android and iOS.
> All this effort would at best move the required threat just one level-up - now a "root" account or kernel compromise would also be necessary, so it wouldn't be a qualitative change.
Well, just use your phone over Bluetooth for the FIDO2 device. This way you'll know exactly which website is requesting the auth: https://github.com/fmeum/WearAuthn - I believe this will soon be available on stock Android as an OS-level service with hardware-based security.
Even in the absence of this, there is still at least some bit of security because you need physical interaction with the FIDO2 device (touching a button) that can't be faked even with the compromised kernel.
Posted Feb 22, 2023 17:24 UTC (Wed)
by NYKevin (subscriber, #129325)
[Link]
It doesn't exist on Linux because Linux does not have a coherent "how does the GUI work, and which bits of it are considered [waves hands] the OS?" story. On Windows and macOS, this sort of thing is entirely standard.
Posted Feb 22, 2023 11:50 UTC (Wed)
by tialaramex (subscriber, #21167)
[Link] (7 responses)
The WebAuthn API has a slot for you to say what DNS name you want authentication for. The browser gets to weed out unacceptable choices. They just get you an error in your Javascript and no user interaction. It is allowed for example for test-new.login.example.com to ask for credentials for login.example.com whereas it won't work if bad-guy.example asks for credentials for real-bank.example assuming example is a conventional TLD. The same mechanism is used to make this work as for cookies (the Public Suffix List).
But after FIDO is used to move an acceptable authentication request to your authenticator, the authenticator goes have the RpID and gets to decide what to actually do, my cheap Yubico Security Key 2 doesn't have any means to display a name, but e.g. if I need to log into a web site in a Chrome logged into Google on a Windows laptop, my Phone (which is also logged into Google) will light up - do I want to use my Phone's onboard credentials to sign into site.name.example on the laptop ? The name is right there for me to consider.
This required an impressive amount of lifting to do securely, the laptop has checked the phone is present using Bluetooth (so bad guys can't cause this to trigger unless they're nearby), but the actual security protocols are run over the Internet. And of course the phone is necessarily more complicated and thus has a larger attack surface area than my Yubico Security Key 2, but if your concern is primarily hard browser take over I guess this solves it.
Posted Feb 22, 2023 13:44 UTC (Wed)
by mss (subscriber, #138799)
[Link] (6 responses)
Posted Feb 23, 2023 1:18 UTC (Thu)
by tialaramex (subscriber, #21167)
[Link] (5 responses)
Posted Feb 23, 2023 10:39 UTC (Thu)
by farnz (subscriber, #17727)
[Link] (4 responses)
Well, FIDO2 is designed to allow you to solve this problem at some expense, if this is a plausible threat for you. This is why the authenticator gets the RpID, after all - to allow you to display it, and to confirm that the RpID on the authenticator is what the human in the loop expects.
But if you are such a high-value target, you can probably afford the expense of a custom authenticator that isn't a general purpose device, but does have a display and a USB interface that talks the authenticator side of FIDO2 CtAP. You don't need a full Linux distro for this - you could build such a thing on something like the STM32 platform.
Posted Feb 23, 2023 13:04 UTC (Thu)
by mss (subscriber, #138799)
[Link] (3 responses)
Posted Feb 23, 2023 13:57 UTC (Thu)
by farnz (subscriber, #17727)
[Link] (2 responses)
Taking away the emotive language, your claims boil down to:
This is fundamentally an insoluble cycle; if your threat model says that COTS security is not good enough, and you also require COTS security, then you cannot solve that cycle.
If, on the other hand, your threat model is a common threat model, then there's room in the market for someone to sell a secure enough COTS token with a display for your needs. Equally, you could produce your own FIDO2 token with an RpID display for now, and switch to COTS tokens (or pivot to selling your secure token) when the market is willing to pay for that.
And yes, FIDO2 explicitly isn't a transaction security mechanism - it's designed to function as an equivalent to passwords, SSH user keys, or TLS client certificates but with secure storage of the secret. A bank may well want a separate method to generate secure per-transaction keys, which would include details of the transaction and not just the password-equivalent.
Posted Feb 24, 2023 0:55 UTC (Fri)
by mss (subscriber, #138799)
[Link] (1 responses)
Posted Feb 24, 2023 10:23 UTC (Fri)
by farnz (subscriber, #17727)
[Link]
The comment I was replying to was an emotive attack on the idea that FIDO2 supports exactly what you want, and thus it's not a case of "build your own", but a case of "apply money to get an adequate implementation of the standard" - you suggested that "apply money to get an adequate implementation" is equivalent to "build your own with your own cryptosystem".
There is a huge gulf between "the standard absolutely supports what I want, it's just that if I stick to COTS parts, I have a choice between an implementation without a display but with adequate security, or an implementation with a display but inadequate security, or building a new implementation that supports both parts of the standard", and "you might as well build your own system, which is a known anti-pattern".
Posted Feb 22, 2023 15:44 UTC (Wed)
by wsy (subscriber, #121706)
[Link] (5 responses)
Posted Feb 22, 2023 17:37 UTC (Wed)
by NYKevin (subscriber, #129325)
[Link]
1. Employers, who IMHO do have a right to say "you may not use some random key, you MUST use the key that we provide."
Unfortunately, we live in a world where you can buy a 10+ TiB SSD from Amazon for $100 USD, and (shockingly) it turns out to be a fake,* so I don't think the institutions who are doing (2) really have much of a choice. It would be too easy for a braindead-but-cheap implementation to become popular.
* See https://www.google.com/search?q=those+fake+cheap+ssds+on+...
Posted Feb 23, 2023 1:28 UTC (Thu)
by tialaramex (subscriber, #21167)
[Link]
I always say "No" and my tokens have worked everywhere that claims to support them on the web. I'm sure if you want employee access to some corporate system it might insist on a Yubico product or whatever and so (even though I do own such products) I'd be rejected for saying "No" but this has never happened to me on a public system in years of using them.
Posted Feb 23, 2023 1:44 UTC (Thu)
by gdt (subscriber, #6284)
[Link] (2 responses)
If the server allow keys from all claimed manufacturers, then the server also allows a program on the laptop, and the SAK is no longer unfakeable.
So whilst you may trust your key more, the server will need to trust your homebuilt key less. Unless the server trusts you enough to add your homebuilt keys' PKI root.
Posted Feb 23, 2023 15:11 UTC (Thu)
by tialaramex (subscriber, #21167)
[Link] (1 responses)
On web, and in my experience at most larger corporate systems, the minimum is far worse than this, and so necessarily unattested devices are actually a big improvement on the status quo.
Going from "Got a valid password from the phishing email, we're in" to "If one of the users has manually installed custom software to pretend to be a key, and is using that instead of their actual key for some reason despite being told not to by policy, and we take control of their machine then we can break in that way" is a massive difference.
Posted Feb 23, 2023 17:54 UTC (Thu)
by NYKevin (subscriber, #129325)
[Link]
Posted Feb 23, 2023 7:22 UTC (Thu)
by erwaelde (subscriber, #34976)
[Link]
For increased nerd factor, the precursor by bunnie is such a thing, too:
Cheers!
Posted Feb 28, 2023 22:34 UTC (Tue)
by nix (subscriber, #2304)
[Link]
Honestly that's an understatement. GPG-related key handling on Linux remains a flaming nightmare, mostly because despite years of work and bugfixing the libccid / opensc / pcscd / gpg-agent house of cards still cannot handle obscure rarely encountered cases like "I've gone to lunch and unplugged my key and taken it with me as I'm supposed to, when I get back and plug it in again I expect things to work and do not want to have to exit all my ssh sessions, kill -9 a horribly hung gpg-agent and pcscd then restart everything again, possibly being restricted to one tty for my sshes unless I copy/paste env var settings around". Debugging this has faded from my memory, but I vaguely recall that it requires compiling piles of things in the ccid/pcscd ecosystem with special flags and (IIRC) running them in unusual ways and then if you're lucky you get protocol dumps in strange places which you can dig through. I have not yet been sufficiently motivated to learn the protocol in question, so my debugging generally stopped there.
Meanwhile, with libfido2 this all just works with every key I've tried, proxying over ssh-agent flawlessly, no admin effort required: disconnection is fine, other things like GPG or PIV handling temporarily locking the key is fine as long as they let it go again, everything works. (I suspect pam_ssh_agent_auth might let me use pam_u2f on remote machines too, proxying back over the ssh agent connection, but I haven't tried that yet.)
Posted Mar 2, 2023 20:11 UTC (Thu)
by tanriol (guest, #131322)
[Link] (1 responses)
Another side that may be a drawback is that authenticator-based credentials often are non-portable (cannot be exported from the authenticator device like a Yubikey), so services need to support multiple credentials per user and users actually have to have (and store in some reliable way) fallback credentials. The latter part of this problem seems to be in process of being solved by "passkeys", which (in this part) boil down to "cloud FIDO2 credentials provided by your ecosystem vendor", i.e. using your Microsoft/Apple/Google/... account both as a way of syncing them between devices and as a backup, plus a standard way to "authorize sign in on the new device from the old device" for the case when the two devices belong to different ecosystems or the user doesn't use credential sync for any other reason. That's going to be a variant that'll be less secure than hardware-based FIDO2 credentials, but more usable for a lot of users.
Posted Mar 4, 2023 0:02 UTC (Sat)
by Cyberax (✭ supporter ✭, #52523)
[Link]
The synchronization can then be done using the regular public/private key exchange between enclaves.
Unfortunately, as of right now, Apple's secure enclave is not up to the task. Its public API only allows hardware-based P256-based encryption/decryption. It's also impossible to export the private key or import your own. So it can be used to protect individual passwords, but they'll have to exist as plaintext in system RAM at some point. It's not possible to move all the crypto to the enclave :(
My biggest issue with FIDO2 is that it does not protect in any meaningful way against a compromised browser (and by-extension: against compromised OS environment/kernel).Passwordless authentication with FIDO2—beyond just the web
As the article mentions, it's the browser that checks whether the user by touching the token is actually approving logging in to https://cute-fluffy-cats.com (as they think they are) and not silently approving logging in to https://my-important-bank.com.
For the same reason, using a FIDO2 token to approve money transfers wouldn't be secure in this threat scenario - you wouldn't be sure that you are actually reimbursing your friend $20 and not transferring out your whole account balance to a criminal.
It's also worth mentioning that popular FIDO2 token implementations (like YubiKey) often also implement OpenPGP smartcard on the same device. This means things like SSH login or git commit signing using private key stored on the token already work out of the box with them, no protocol changes required.
Passwordless authentication with FIDO2—beyond just the web
Yes, such device most probably would need to have a display to see what's being signed and some method to independently verify the request origin - like a shared secret with each one.Passwordless authentication with FIDO2—beyond just the web
It would probably still need USB or NFC connection to exchange the data to be signed and return the signature - but no WiFi Internet-connected devices please.
The payment industry had a primitive implementation of such idea called Chip Authentication Program years ago.
Passwordless authentication with FIDO2—beyond just the web
Passwordless authentication with FIDO2—beyond just the web
Passwordless authentication with FIDO2—beyond just the web
Passwordless authentication with FIDO2—beyond just the web
You can also use Web Authentication caBLE v2 to do this over Bluetooth Low Energy. Chromium implements this for supporting your Android phone as a FIDO2/WebAuthn passkey.
Passwordless authentication with FIDO2—beyond just the web
Using a Linux phone as a hardware base for such authenticator token might by a good idea, just not a stock one running full network-connected OS.Passwordless authentication with FIDO2—beyond just the web
Having only simple interface to the rest of the world, which has a limited attack surface and is relatively easy to audit, is the whole point of a hardware token.
I think that any kind of network connectivity would weaken it to the point of almost defeating its purpose.
But if there's a way to just reuse the basic hardware, disable cellular modem, WiFi, Bluetooth, USB network connectivity, ADB, etc. in a way that they cannot be re-enabled without explicit user intervention then it would mostly do the trick.
The device could work line this:
Then any potential network-related attack surface would be limited only to that tiny chunk of early boot code.
In this case the device itself only needs a minimum kernel that exports just a FIDO2 HID gadget interface over USB to its host and provides basic authenticator GUI.
Nobody would use that. I certainly would not. BLE with a secure enclave trigger through biometrics or a passphrase is more than enough for me.
Passwordless authentication with FIDO2—beyond just the web
Passwordless authentication with FIDO2—beyond just the web
Passwordless authentication with FIDO2—beyond just the web
Passwordless authentication with FIDO2—beyond just the web
Passwordless authentication with FIDO2—beyond just the web
Passwordless authentication with FIDO2—beyond just the web
So in practice you can buy the cheapest possible Android phone without a SIM card, install an OpenSource build there and it would meet your requirements.
This would still need some bootloader work though, to actually disable these network devices in a way that they cannot be re-enabled by the ordinary software stack without explicit user intervention - assuming that the hardware even has such "disable until reset" functionality.
Or opening the device and disconnecting their antennas - might be easier to achieve but harder to temporarily revert.
And not easily doable for PCB antennas on the main board.
Another option would be to use a phone with hardware radio kill switches, like a PinePhone - but that technically isn't an Andorid phone, nor is it particularly cheap.
Passwordless authentication with FIDO2—beyond just the web
Passwordless authentication with FIDO2—beyond just the web
Passwordless authentication with FIDO2—beyond just the web
Passwordless authentication with FIDO2—beyond just the web
Passwordless authentication with FIDO2—beyond just the web
Passwordless authentication with FIDO2—beyond just the web
Passwordless authentication with FIDO2—beyond just the web
Passwordless authentication with FIDO2—beyond just the web
Passwordless authentication with FIDO2—beyond just the web
Passwordless authentication with FIDO2—beyond just the web
Passwordless authentication with FIDO2—beyond just the web
Passwordless authentication with FIDO2—beyond just the web
Passwordless authentication with FIDO2—beyond just the web
but OS-level WebAuthn subsystem can show the credential details in a pop-up window that can't be controlled by the browser
I was writing about the current state of affairs, and AFAIK such OS-level WebAuthn subsystem doesn't exist yet (at least not on Linux).
Such OS-level protection would need to also need involve things like X11 server or Wayland compositor to make sure that the authentication prompt dialog box isn't simply painted over with a fake one or quickly accepted by a fake input event.
All this effort would at best move the required threat just one level-up - now a root
account or kernel compromise would also be necessary, so it wouldn't be a qualitative change.
And adding more complex protocol parsing into the OS kernel isn't probably the best idea security-wise.
Passwordless authentication with FIDO2—beyond just the web
https://github.com/psanford/tpm-fido
https://git.kernel.org/pub/scm/linux/kernel/git/jejb/fido...
https://news.ycombinator.com/item?id=33943008
Passwordless authentication with FIDO2—beyond just the web
Passwordless authentication with FIDO2—beyond just the web
Passwordless authentication with FIDO2—beyond just the web
Passwordless authentication with FIDO2—beyond just the web
And of course the phone is necessarily more complicated and thus has a larger attack surface area than my Yubico Security Key 2
As I wrote above a network connected device (especially as complex as modern phones are) definitely has much larger attack surface than I expect from an authenticator token.
Passwordless authentication with FIDO2—beyond just the web
Passwordless authentication with FIDO2—beyond just the web
Passwordless authentication with FIDO2—beyond just the web
If you're so valuable that bad guys are going to spend an apparently unknown browser exploit *and* an apparently unknown phone exploit to target you
These attacks don't have to be targeted, but can be done against large number of people having the same phone model (for example).
Also, the browser and the phone don't have to be attacked at the same time - one can just wait for a vulnerability to be published and then try to infect as many devices as possible before people update.
At some point, after a few iterations, this will give the attacker a pool of (browser, phone) pairs which then can be exploited for nefarious purposes.
After all, the attacker needs to succeed just once (per device), while the defender has to successfully defend against every attack.
Well, FIDO2 is designed to allow you to solve this problem at some expense
"If you want good security you have to do it yourself" it's definitely not how security stuff should be done (sounds far too close for comfort to having a proprietary cryptosystem).
Even if you excuse this approach, it still doesn't solve the second problem that I mentioned in my original comment:
For the same reason, using a FIDO2 token to approve money transfers wouldn't be secure in this threat scenario - you wouldn't be sure that you are actually reimbursing your friend $20 and not transferring out your whole account balance to a criminal.
Passwordless authentication with FIDO2—beyond just the web
Passwordless authentication with FIDO2—beyond just the web
Taking away the emotive language, your claims boil down to
I don't think my points here contained any significant amount of emotion, just some example scenarios to make them more understandable.
If, on the other hand, your threat model is a common threat model, then there's room in the market for someone to sell a secure enough COTS token with a display for your needs
That's why I posted my original comment under this article - to make it clear that there are people interested in such functionality.
Passwordless authentication with FIDO2—beyond just the web
Passwordless authentication with FIDO2—beyond just the web
Passwordless authentication with FIDO2—beyond just the web
2. Various forms of "compliance," which is usually just a special case of (1), but occasionally does show up for consumer accounts in e.g. banking or healthcare.
Passwordless authentication with FIDO2—beyond just the web
Passwordless authentication with FIDO2—beyond just the web
Passwordless authentication with FIDO2—beyond just the web
Passwordless authentication with FIDO2—beyond just the web
Passwordless authentication with FIDO2—beyond just the web
https://www.bunniestudios.com/blog/?p=5921
https://www.crowdsupply.com/sutajio-kosagi/precursor
Passwordless authentication with FIDO2—beyond just the web
Passwordless authentication with FIDO2—beyond just the web
Passwordless authentication with FIDO2—beyond just the web