It requires a bit more effort than simply entering a password, yes, but the protection it offers you is worth it. We have already commented on this on more than one occasion – enabling a two-step verification for all services that we use (Gmail, Facebook, etc) is a basic security measure that we should not overlook.
If this true, I need to clarify what fields in the certificate are cheked.Due to the increasing prevalence of cyber-attacks resulting in massive data leaks, it is of utmost importance that we keep our profiles under lock and key so as to avoid becoming another victim. With Gmail it seems like it check some information in attestation certificate when make 2nd step of verification. Have you any idea about this problem or how to get extra info about reasons of fail?Įxtra information: I also checked my virtual token application to work with e-mail service and both registration and verification is OK. Below 2 screenshots of this process.īecause of no any extra info about problem, I have no idea what is comes wrong and why after dialog with OK mark I can't enter to Gmail account. After my application reply to authentication command and Gmail dialog window show "OK" mark, I click to "Next" button and no enter to Gmail account happens. But my application fail authentication in very strange manner.
When I using Yubikey 5 NFC Token at 2nd step of authorization it goes correctly, after dialog with "OK" mark I click Next and enter to Gmail account. Then I try to use both devices to pass 2-step verification.
Then I test registration and authentication at post service and also all is correct.įinally I turn on 2-step verification at Gmail and successfully register both Yubikey 5 NFC Token and my application virtual token. My application was tested on some demo sites such as, , where registration and authentication goes correctly with my application. The application creates virtual token and support FIDO U2F NFC protocol Specification v1.0. For reference purpose I use Yubikey 5 NFC Token. I am in developing application for Android smartphone for make WebAuthn authentication using FIDO U2F protocol by NFC interface.
0 kommentar(er)
