It is more efficient, in terms of cost the datacenter owner pays per unit of heat extracted. Water is cheap in places this is being done, relative to amount of heat vaporization can carry off. You can certainly argue…
market of three The litephone is too basic and the HiSense A5 etc do not work on US networks. I looked at building a 5.2" e-ink phone for the US market and did some fun mock-ups, but it would be a huge undertaking with…
Yes that's fair, it's a trade-off. Thinking more, there are really three levels of protection I see. 1. Keep keys in a file/the keyring. This protects them somewhat from non-root users on the same machine. It also…
I've considered adding FIDO2 support to the software-only U2F token I wrote in Rust. It's a fair bit of work though, and I am not sure how comfortable I am with passwordless login unless the keys are kept purely in…
Yep exactly, Krypton looked interesting, sorry to see it's dead. And yep Apple is way ahead on this imo, the touch sensor securely communicates with the Secure Enclave, I'm not aware of other laptop hardware doing that.…
Thanks for the shout-out! I wrote that U2F implementation in software because I wanted phishing protection without needing to carry a hardware key. Well, and to learn Rust :) It's certainly a security trade-off to just…
I would too. Go ahead and open an issue and we can chat more, but in short I think the biggest hurdle is understanding TPM2 and what API to use to interact with the device. (TPM2 is necessary so the key material never…
It definitely also supports Firefox, updated the README. I'm just emulating a USB device and using OpenSSL to do the signing, is there a better approach I should be looking at? (perhaps PKCS #11)
Thanks for the suggestion. It hasn't been a focus yet because it doesn't bring much security for me personally, but it is something I would like to do eventually. Issue: https://github.com/danstiner/rust-u2f/issues/19
Shameless self-plug, I've written such an equivalent for Linux distros: https://github.com/danstiner/rust-u2f#rust-u2f Though it suffers from the caveat that secrets are just stored as a file in $HOME. I'd love to…
It is more efficient, in terms of cost the datacenter owner pays per unit of heat extracted. Water is cheap in places this is being done, relative to amount of heat vaporization can carry off. You can certainly argue…
market of three The litephone is too basic and the HiSense A5 etc do not work on US networks. I looked at building a 5.2" e-ink phone for the US market and did some fun mock-ups, but it would be a huge undertaking with…
Yes that's fair, it's a trade-off. Thinking more, there are really three levels of protection I see. 1. Keep keys in a file/the keyring. This protects them somewhat from non-root users on the same machine. It also…
I've considered adding FIDO2 support to the software-only U2F token I wrote in Rust. It's a fair bit of work though, and I am not sure how comfortable I am with passwordless login unless the keys are kept purely in…
Yep exactly, Krypton looked interesting, sorry to see it's dead. And yep Apple is way ahead on this imo, the touch sensor securely communicates with the Secure Enclave, I'm not aware of other laptop hardware doing that.…
Thanks for the shout-out! I wrote that U2F implementation in software because I wanted phishing protection without needing to carry a hardware key. Well, and to learn Rust :) It's certainly a security trade-off to just…
I would too. Go ahead and open an issue and we can chat more, but in short I think the biggest hurdle is understanding TPM2 and what API to use to interact with the device. (TPM2 is necessary so the key material never…
It definitely also supports Firefox, updated the README. I'm just emulating a USB device and using OpenSSL to do the signing, is there a better approach I should be looking at? (perhaps PKCS #11)
Thanks for the suggestion. It hasn't been a focus yet because it doesn't bring much security for me personally, but it is something I would like to do eventually. Issue: https://github.com/danstiner/rust-u2f/issues/19
Shameless self-plug, I've written such an equivalent for Linux distros: https://github.com/danstiner/rust-u2f#rust-u2f Though it suffers from the caveat that secrets are just stored as a file in $HOME. I'd love to…