Awesome
Ledger U2F Applet
Overview
This applet is a Java Card implementation of the FIDO Alliance U2F standard
It uses no proprietary vendor API and is freely available on Ledger Unplugged and for a small fee on other Fidesmo devices through Fidesmo store
Building
- Set the environment variable
JC_HOMEto the folder containg the Java Card Development Kit 3.0.2 - Run
gradlew convertJavacard
Installing
Either load the CAP file using your favorite third party software or refer to Fidesmo Gradle Plugin to use on the Fidesmo platform
The following install parameters are expected :
- 1 byte flag : provide 01 to pass the current Fido NFC interoperability tests, or 00
- 2 bytes length (big endian encoded) : length of the attestation certificate to load, supposed to be using a private key on the P-256 curve
- 32 bytes : private key of the attestation certificate
Before using the applet, the attestation certificate shall be loaded using a proprietary APDU
| CLA | INS | P1 | P2 | Data |
|---|---|---|---|---|
| F0 | 01 | offset (high) | offset (low) | Certificate data chunk |
Testing on Android
- Download Google Authenticator
- Test on http://u2fdemo.appspot.com or https://demo.yubico.com/u2f from Chrome
- For additional API reference and implementations, check the reference code, the beta NFC API and Yubico guide
Certification
This implementation has been certified FIDO U2F compliant on December 17, 2015 (U2F100020151217001). See tag u2f-certif-171215
State model
License
This application is licensed under Apache 2.0
Contact
Please contact hello@ledger.fr for any question