U2F support in OpenSSH HEAD

Damien Miller djm at mindrot.org
Sun Nov 3 21:49:55 AEDT 2019


On Sat, 2 Nov 2019, Joseph S. Testa II wrote:

> On 11/1/19 4:36 AM, Damien Miller wrote:
> >  new key type "sk-ecdsa-sha2-nistp256 at openssh.com"
> 
> Was ECDSA with NIST P-256 strictly necessary,

Yes, it is the only key type specified for U2F.

> or would Ed25519 be possible as well?

I think Ed25519 might be specified for FIDO2, if so we'll look at adding
it in the future.

-d



More information about the openssh-unix-dev mailing list