This looks incredible. Are there any deeper technical specs (does this support FIDO U2F, in particular)? And any possibility of a "developer version" that also functions as GPG SmartCard?
@mbthomas We're supporting FIDO2.0, aka WebAuthn over Bluetooth Low Energy and NFC.
We also support Windows Hello for desktop login, which is being expanded for other web logins.
I can't promise any specifics, but we're definitely looking into supporting other protocols that fit our scheme of private-key-on-device security. PGP would be an excellent first candidate.
@john_dvorak very exciting about other key-on-device schemes! I had to look this up but WebAuthn is designed to subsume and replace all use cases of U2F *and* add provide additional non-phishable authentication capabilities.
@mbthomas Yep! It's a really exciting protocol. Once we saw the direction W3C and the WebAuthn protocol is taking, we joined the FIDO Alliance to help shape its evolution. We really consider it a key future technology, and are very proud to have working partnerships with Microsoft and MasterCard.
The FIDO U2F and UAF protocols were strong and fit a niche use case very well, but I think there was a general usability problem where it was difficult to drop-in replace an existing password solution. That's why one of our major design goals was ease of use, so an end user can seamlessly add WebAuthn credentials that are EASIER to use than a password!
@sam_cholera We're laser focused on the identity use case and on creating an amazing authentication experience throughout your day. We plan to add more identity artifacts to Token in addition to the 6 use cases we support (ie: think tickets, hotel keys, driver licenses, etc.) before considering adding unrelated features like fitness. We believe that identity is a big enough problem to keep us busy. When passwords are dead and credit card fraud is eradicated, we can talk fitness tracking.
Product Hunt
Product Hunt
Token
Token
Token