Photo of Terence Eden. He has a beard and is smiling.

Terence Eden’s Blog

How do I revoke a FIDO / WebAuthN token from every service?

· 11 comments · 400 words · read ~481 times.

YubiKey Neo - a thumb sized USB device - on cardboard backing

After my blog post about recovering my accounts after a disaster, I followed the most repeated advice: Get two YubiKeys Associate them both with your accounts Keep one off-site in a safe location OK, done! My wife and I spend a very boring evening going through every single account we have which supports FIDO tokens with WebAuthN - about a dozen in total. We manually paired two keys each. We put our main key on our keyrings, then drove out to the woods and buried our spares in a a…

Continue reading →

Where are the U2F Rings?

· 6 comments · 700 words · read ~1,540 times.

Photo of an NFC ring, taken by Rain Ashford.

The FIDO specification defines a form of Universal 2nd Factor (U2F) when users log in to a system. Rather than relying on one-time codes sent via SMS, or displayed on a phone screen, these are physical hardware tokens which are used to supplement passwords. When used with websites, this technology is also known as WebAuthn. I use a USB thumb-drive sized hardware token and they're nifty - but a little impractical. Since the great working from home experiment, I don't have my keys on me at…

Continue reading →