conorpp/u2f-zero conorpp/u2f-zero

  • Stars
    star
    2,407
  • Rank 18,982 (Top 0.4 %)
  • Language
    C
  • License
    Other
  • Created over 8 years ago
  • Updated about 2 years ago
Twitter logo Share LinkedIn logo Share Facebook logo Share
conorpp/u2f-zero
github

conorpp

Reviews

There are no reviews yet. Be the first to send feedback to the community and the maintainers!

Repository Details

U2F USB token optimized for physical security, affordability, and style

This project has been replaced by Solo security key

This project is superseded by the open source FIDO2 token, Solo. It is still in development, but offers:

  • FIDO2 + U2F + more secure
  • Easier to build & customize

U2F Zero is no longer maintained.

U2F Zero

U2F Zero is an open source U2F token for 2 factor authentication. It is implemented securely. It works with Google accounts, Github, Duo, and anything else supporting U2F. The latest version uses key derivation and has no limit on registrations.

You can easily build your own. You just need to order the 8 SMT parts, $1.13-$3.5 per PCB, and programmer. It ends up being $35 for programmer and ~$5/board. The token should be durable enough to survive on a key chain for years, even after going through the wash.

Check out the wiki for more on how to build your own.

Redesign / FIDO 2

FIDO 2 protocol is replacing U2F. It has more flexibility and support for password-less login. A new open source FIDO 2 token is being planned (with support for USB, Bluetooth, and NFC). Discussion for hardware design and usage is happening here, feel free to chip in.

Security Overview

The security level is about the same as a modern car key. Any secret information cannot be read or duplicated. A true random number generator is used to create unpredictable keys.

However, side channel leakage is an unsolved problem in industry and academia. So for well equipped adversaries that can make targetted attacks and get physical access, secret information leakage is possible. Any other hardware token that claims it's "impenetrable" or otherwise totally secure is still vulnerable to physical side channels and it's important to acknowledge. However, most people don't worry about targeted attacks from well equipped adversaries.

For more information about U2F Zero's secure implementation and the problem of side channels, check out the wiki.

Support

Support this project by purchasing or sharing U2F Zero on Amazon.

License

Everything is open source and licensed under the Simplified BSD License.

More Repositories

1

btproxy

Man in the Middle analysis tool for Bluetooth.
Python
507
star
2

MiTM-HTTP-Proxy

A simple, low level http/https proxy server with MiTM pranking features.
C
50
star
3

bitsliced-aes

A bitsliced implementation of ECB and CTR AES
C
46
star
4

efm8-arduino-programmer

Program EFM8 devices using an arduino
C++
43
star
5

3d-maze-generator

This is a parametric model for a 3D maze. Generates openscad which can render to STL.
Python
37
star
6

u2f-one

Moved to https://github.com/SoloKeysSec/solo
C
12
star
7

bitflipper

Combinatorially flip bits by brute force until a file is no longer corrupted.
C
10
star
8

solo-business-card

A flex PCB business card that also works as a Solo
9
star
9

SMT-Gravity-Holder

7
star
10

Hokie-Enhancement-Suite

A large improvement to the time table of classes page
JavaScript
3
star
11

learn-synopsys

A hello world project to learn synopsys and make a multiplier circuit
Verilog
3
star
12

em-strip-pcb

This is a PCB with traces that make a "coil" on a 2 layer board for the purposes of emulating 2 tracks for magnetic strip readers.
KiCad Layout
3
star
13

taciturn-quack

Testing the "unlimited" storage offered on Google Drive.
Shell
2
star
14

conorpp.github.com

HTML
2
star
15

room-climate

Room climate monitor device and server
Arduino
2
star
16

codesign-challenge-2015

My 2015 hardware software codesign challenge solution
C
2
star
17

footprints

Python
2
star
18

local-sitemap-generator

Generates a XML sitemap using a local directory tree
Shell
2
star
19

mboot-js

Access NXP bootloaders using Nodejs or Chrome WebUSB (in progress)
TypeScript
2
star
20

blhost-macos

Latest blhost from NXP with patches to run on latest MacOS
C++
2
star
21

altera-openadc

OpenADC support for Altera Cyclone V
Verilog
2
star
22

Dockerfiles

Dockerfiles for creating docker containers I use
2
star
23

furry-waffle

openADC to DE1-SOC Cyclone V adapter board
KiCad Layout
1
star
24

crispy-pancake

Altera technology based clock glitcher for injecting faults
Verilog
1
star
25

learn-cuda

Reworking Cuda examples to learn Cuda
Cuda
1
star
26

smart-shirt

Smart shirt project
C
1
star
27

FirstAndroidApp

An app filled with random utilities. Sensors, timers, web API's.
Java
1
star
28

date-version

Generate a version based on a major and date. Because usually users just care how recent a version is.
Rust
1
star
29

u2f-zero-landing-page

Landing page for U2F Zero
CSS
1
star
30

aeropress-press

3D parts and BOM for automated press for Aeropress.
OpenSCAD
1
star
31

small-printing

This is a very lightweight (~150 lines) of printing routines in C intended for small embedded applications
C
1
star
32

NerfGunTurret

Skeletal tracking nerf gun turret
C#
1
star
33

crispy-octo-garbanzo

Looking at information leakage in shared GPU clusters
Cuda
1
star