This week’s EYE ON NPI (video) will be your loyal friend like a pet dog – it’s Authentrend FIDO2 Biometric Security Keys. These FIDO2 compatible USB dongles have an absolutely adorable built-in fingerprint sensor on the end, which means they have an additional layer of security in addition to ownership: you also need to have the matching fingerprints.
This is great when you want to secure something with 2 or 3 factors and possibly without having to have folks remember or change passwords.
Historically, authentication was done with just a username and password . But, as we’ve all learned, usernames and passwords can be guessed or stolen or hacked! Some folks have two-factor time-based code cards, apps or SMS messages which add “something you own” to the list.
FIDO/U2F cards have been around as a USB-based authentication system for a bit, and they’re slowly gaining traction through an open standard which makes it easy to integrate with web or desktop applications. We’re huge fans of moving all of your security risk to hardware like these, that abide by open standards – it’s very hard to create a secure hardware device. Firmware, storage, even when encrypted, is not often crackable or glitchable. Using an external dongle gives you a hermetically sealed challenge-response system from a company that does only one thing. Because the private keys are stored in the hardware, you don’t have to store them on device in firmware.
Of course, you probably want to use it for non-website projects too! You can interface with the security dongle very easily using the python-fido2 library, which means any embedded Linux/single board computer will be able to have trusted authentication added with USB. This could be a very inexpensive and fast way to add trusted authentication for your product without having to hire a cryptographer.
There are plenty of Authentrend ATKEY.PRO TYPE-A in stock at Digi-Key right now, that’s the one we’ve been using the most, but do check out the other variants as well, such as the USB C, if your computer has type C ports. Order one for each user today, knowing that the FIDO2 standard will mean easy and trustworthy deployment for many years!
Adafruit publishes a wide range of writing and video content, including interviews and reporting on the maker market and the wider technology world. Our standards page is intended as a guide to best practices that Adafruit uses, as well as an outline of the ethical standards Adafruit aspires to. While Adafruit is not an independent journalistic institution, Adafruit strives to be a fair, informative, and positive voice within the community – check it out here: adafruit.com/editorialstandards
Stop breadboarding and soldering – start making immediately! Adafruit’s Circuit Playground is jam-packed with LEDs, sensors, buttons, alligator clip pads and more. Build projects with Circuit Playground in a few minutes with the drag-and-drop MakeCode programming site, learn computer science using the CS Discoveries class on code.org, jump into CircuitPython to learn Python and hardware together, TinyGO, or even use the Arduino IDE. Circuit Playground Express is the newest and best Circuit Playground board, with support for CircuitPython, MakeCode, and Arduino. It has a powerful processor, 10 NeoPixels, mini speaker, InfraRed receive and transmit, two buttons, a switch, 14 alligator clip pads, and lots of sensors: capacitive touch, IR proximity, temperature, light, motion and sound. A whole wide world of electronics and coding is waiting for you, and it fits in the palm of your hand.
Have an amazing project to share? The Electronics Show and Tell is every Wednesday at 7pm ET! To join, head over to YouTube and check out the show’s live chat – we’ll post the link there.