Open Source Hardware 2fa Capacitive Touch
Security & Privacy
*omu
Somu
A tiny FIDO2 security key for two-cistron authentication and passwordless login
$81,881 raised
of $35,000 goal
Express items in stock. Society beneath.
$35 - $40
View Purchasing Options
Somu is a tiny FIDO2 security key yous can use with your Google, Twitter, and GitHub accounts for two-cistron authentication, or your Microsoft account for passwordless login. Somu fits in your USB port, and then you'll never forget your central over again.
Somu is the micro version of Solo. We were inspired to make a secure Tomu, so nosotros took its tiny grade cistron, we added the secure microcontroller and firmware of Solo, et voilĂ ! Here we take Somu.
Open up Source: Verified and Trustworthy
Somu and all our other keys share open source hardware and firmware, because we believe that security should be more open, particularly when it comes to hardware. Our keys are verified, trustworthy and hide no secrets. Well, except ane: a principal hole-and-corner is safely stored and protected by the STM32 microcontroller, so that only you can log in, of course.
A note on security: in this entrada, we're only selling Somu Hacker, the reprogrammable version of Somu. Please read the details in the section "Somu Hacker and Security" below.
Hand soldered paradigm.
FIDO2: Strongest Web Authentication
Like many other FIDO2 security keys on the market, Somu works seamlessly with your Google, Twitter, and GitHub accounts for two-cistron authentication, or with your Microsoft business relationship for passwordless login. Somu fits in your USB port, then you'll never forget your key once more. And FIDO2 / WebAuthn is now a web standard, and then you don't need whatsoever extension whatsoever, Somu just works on most operating systems and browsers.
Different many other FIDO2 security keys on the market, Somu is fully open up source and reprogrammable. Information technology has an STM32L4, one RGB led, and ii buttons. It'due south secure against online attacks and can be permanently locked down to exist secure confronting physical attacks (more than on firmware security below).
SSH (Nether Development): Hardware-backed Hallmark
Development is already in progress, merely the space is pretty fragmented with many defective features from other tools (for example, ssh-agent/opensc lack back up for Ed25519). For these reasons, a stretch goal seemed appropriate. With some actress funding, we can certainly speed upward development, including submitting PRs to other projects. And if you'd like to exist more involved, feel costless to jump on GitHub!
Build With Somu
Considering Somu fits entirely in your USB port, it'll soon become your inseparable companion for all your projects. Those (maybe low-levelish) projects, which before required infinite, extra devices, and wires all over the identify… tin now be worked on anywhere that y'all are! Here are some ideas:
Add FIDO2 / WebAuthn To Your Website
We talk a lot almost hardware and firmware, but permit's not forget the nuts. WebAuthn is now a W3C standard, supported in all major browsers and OS's, and offers stronger authentication than manifestly username+password. With Somu, you tin test WebAuthn with just a few lines of JavaScript in your website, and build support for two-factor hallmark, passwordless login, and even extra verification for sensitive user actions inside your app (east.g., confirming transactions or critical changes to the settings).
Develop Secure Spider web Apps
You can use Somu to prototype or build applications that interact with a secure hardware component. Using WebAuthn extensions, yous tin build web apps that run in the browser and collaborate with Somu for functionalities other than pure authentication. For example, to digitally sign a document or a transaction. And because Somu is open up source, you can even add together new FIDO2 extensions to its firmware to aggrandize its capabilities and and so immediately apply them inside your app.
Learn STM32 Development
With i RGB LED and two buttons, Somu is a peachy STM32 lath with a skillful amount of real-earth code to tweak and learn from. You can also run Arduino on Somu via the STM32duino projection. In both cases, you tin can access the entire spectrum of features of the STM32 in C/C++ (or even Rust), and non be limited past a Java carte du jour abstraction.
Somu Hacker and Security
We accept two unlike flavors for all our security keys, including Somu: "secure" for consumers, and "hacker" for developers.
In this campaign, we're only selling Somu Hacker, the reprogrammable version of Somu (with the exception of the highest pledge value, for which yous tin can choose any combination of Somu Hacker or Somu Secure—on the assumption you'll desire to resell the keys to consumers).
Is Somu Hacker Secure?
Both Somu Secure and Somu Hacker, similar whatever security keys, are secure against online attacks, including account takeover and phishing.
Somu Secure has locked-downwardly firmware, and yous tin can only upgrade it with firmware released and signed by usa.
Somu Hacker is unlocked and reprogrammable past blueprint. Considering of that, a potential malware on your laptop may rewrite its firmware. At anytime, y'all can permanently lock Somu Hacker down, and get in de facto a Somu Secure. (The contrary is non possible - a Somu Secure may never become a Hacker)
What Near Concrete Attacks and Malware?
If an aggressor physically steals your central, they can simply utilize it. So physical attacks are by and large not considered by FIDO. This said, you can set a Pin for your security primal, and we use STM32 level ii readout protection to ensure that secrets never leave the device - thus ensuring that an evil butler tin't clone your key.
Likewise note that malware could potentially compromise many things in your system - such every bit your browser pr your DNS cache (important against phishing attacks). So while information technology's clear that Somu Secure is strictly more secure than Somu Hacker in theory, in practise, it'due south hard to ascertain where the line is. In general, to stay safe, nosotros don't recommend using Somu Hacker for production.
Comparisons
| Somu | Tomu | Yubikey Nano five | Yubikey Nano 4 | Solo | |
|---|---|---|---|---|---|
| Tiny | Yes | Yep | Yeah | Aye | No |
| Secure* | Yeah | No | Yes | Yes | Yes |
| Open Source | Aye | Yes | No | No | Yes |
| U2F | Yes | Aye | Yes | Yes | Yes |
| FIDO2 | Yeah | No | Yes | No | Yeah |
| Buttons | 2 | 2 | 1 | 1 | ane |
| LEDs | RGB | R+1000 | RGB | RGB | RGB |
| Fabricated in | Italy | People's republic of china | US / Sweden | US / Sweden | Italy |
| Retail Price | $35 | $thirty | $50 | n/a | $twenty |
* The microcontroller supports security features to protect against physical extraction of key textile
Specifications
- Supported Protocols: FIDO2, U2F
- Supported Operating Systems: Linux, Microsoft Windows, Mac OS X, Chrome Bone
- Supported Browsers: Chrome, Firefox, Edge, and Safari support is coming presently (GA in MacOS Catalina)
- Secure Processor: STM32L432KC (with TRNG, security isolation for keys, ii levels of locked flash)
- Crypto Algorithms: ECC P256 (as per FIDO2 standard)
- Host Interface: USB-A
- Interaction: two impact buttons - in our FIDO2 firmware the two buttons behave every bit a single one
- Feedback: RGB LED
- Size: 0.5 x 0.5 x 0.1 inches (thirteen x thirteen ten 2.four mm)
- Weight: 0.11 ounces (3 g)
Blueprint and Prototypes
The PCB is a i mm thick 2-layer board, with Z-axis milling. The milling makes the brusque tabs on the sides let the PCB to "slide fit" into the case.
The border that protrudes (slightly) out of your USB port is plated to make two independent capacitive touch buttons. Firmware will currently combine and care for them every bit 1, but they may be configured for two different deportment in the future.
Similar to Solo, the example is a durable silicone sleeve, which volition flex slightly around the PCB to brand a proficient fit.
How Can I Be More Involved?
We're pretty actively working on firmware evolution on GitHub, you lot tin bring together the discussion, submit PRs, or just lurk around and acquire about our project or FIDO more generally. We desire to add together back up for SSH/GPG, to which you lot're very welcome to contribute.
We also noticed that the space is fragmented and many features are lacking from other tools. For example, while OpenSSH supports Ed25519 and we could add back up to our firmware, connecting the dots isn't as straightforward as it seems. Neither OpenSSH agent (the client) nor OpenSC (the PKCS11 driver) back up Ed25519. Whatsoever assistance to add together support for Ed25519 in OpenSSH amanuensis and OpenSC is greatly appreciated.
And of course, if you lot take any other ideas on things y'all want to make with Somu, please don't hesitate to become in touch below or achieve out on Twitter @SoloKeysSec… this is the beauty of open source!
Support & Documentation
Yous tin can find more nigh SoloKeys at https://solokeys.com, and if you accept whatever specific questions, experience free to reach out just below. If you want to take a look at the lawmaking and electric current documentation, y'all can outset at https://github.com/solokeys/solo.
In the Press
Ask a Question
Produced by SoloKeys in Laurel, Physician.
Sold and shipped past Oversupply Supply.
Somu
An open source 2FA, FIDO2 security primal that fits inside your USB Type-A port.
$35 $8 U.s. Shipping / $18 Worldwide
Solo Tap USB-A
An open up source 2FA, FIDO2 security USB Type-A primal trick that is NFC capable.
$35 $8 US Shipping / $18 Worldwide
Solo Tap USB-C
An open source 2FA, FIDO2 security USB Type-C key fob that is NFC capable.
$40 $8 United states Shipping / $18 Worldwide
About the Squad
SoloKeys
Laurel, Medico · solokeys.com
At SoloKeys, we make open up source hardware for secure applications.
0 Response to "Open Source Hardware 2fa Capacitive Touch"
Post a Comment