Pol Henarejos’ Pico FIDO project transforms a Raspberry Pi Pico into an integrated FIDO Passkey, functioning like a standard USB Passkey for authentication.
The demonstrations use a Pimoroni TINY2040 and the central LED is used to indicate the status of the ley.
Security Considerations
Pico FIDO is an open platform, so exercise caution. The flash memory contents can be easily dumped, potentially revealing private/master keys. It is not feasible to encrypt the content, meaning at least one key (the master key) must be stored in clear text. If the Pico is stolen, the private and secret keys can be accessed.
See more, including the code, on GitHub.
No comments:
Post a Comment