Primer: The thought of FIDO, U2F, and finally the solution to the flawed username/password system fascinates and excites me. OMG I can't wait.
Here's the solution I envision, in very simple terms:
Replace the password in general with the TOTP (or other authentication) of the Yubikey NEO.Now, in less-simple terms.
I currently use KeePass for all of my sensitive data - website UN/PW combinations, credit card information, etc. I use this solution for a few different reasons:
As local as I want it to be
Ease-of-use, due to the auto-type functionality
The problem is that while I can randomize passwords from website to website, I still need to remember one important password: the one that unlocks my KeePass database.
Here's what I want to see happen - that database should not only be unlocked by the Yubikey (which is already possible), but logging into any website using the auto-type functionality should be as easy as the touch of the Yubikey in a USB port or tapping the back of my phone with the NEO.
As I understand it, this is the idea behind what is supposed to start taking place with U2F. I've also tried the solution known as "KeyGenius," and while this is as close as it gets to what I seek, KeyGenius is incomplete.
Can anyone point me in the right direction?
Login
FAQ
Search
