Solo is a FIDO2 security key you can use to securely login to websites. It's an open source alternative to Google Titan. It works with PCs and mobile phones via NFC. It supports signed firmware updates, so we can soon add new features like OpenPGP, one time passwords, static passwords, and cryptocurrency wallet features.
Hi everyone!
I started on this years ago when I started making tiny, cheap U2F security keys and selling them on Amazon back in college. The project has since grown significantly -- two years ago we launched products on Kickstarter, and now we've re-imagined them completely and are launching again on Kickstarter 🔥.
https://www.kickstarter.com/proj...
How do you use a security key?
This key runs FIDO2 and PIV. FIDO2 is an open spec about using strong cryptography to authenticate to the web. It's supported on all operating systems, major browsers, Android, and iOS. You can use a FIDO2 key to authenticate to Google, Github, Twitter, Facebook, etc.
FIDO2 is pretty much the best way to authenticate online because it's the most resistant against phishing. Unlike time based codes or other one time codes which can be phished, or vulnerable to sim jacking. FIDO2 security keys do not get phished and everyone should be using them in some fashion on their important accounts.
What's improved with Solo v2 over our last products and our competitors?
- Innovative and Robust Construction. We developed a novel construction for our new keys that is significantly more durable and waterproof. It's based on a mating of a cavity PCB and a normal PCB. After combined, the resulting electronics cavity is filled with transparent epoxy. Durability, water proof, and tamper resistant. The circuit transparency has been a big part of our open source brand, so further building on that was important to us.
- More optimized NFC performance. One of the most common complaints with our v1 devices is poor NFC performance with common mobile phones. I've significantly improve the performance with v2. This is done using a more optimized and tested NFC antenna, dynamic clock scaling, a better NFC chipset, and a lower power microcontroller.
- Written in Rust. Rust is the most modern programming language for systems. Rust enables the highest level of safety and determinism which is critical for security firmware. We've completely rewritten our previous C code base in Rust, and added more functionality (like PIV). Additionally, Rust's Cargo ecosystem makes our code much more modular and suitable for open source collaboration.
Read more here: https://solokeys.com/blogs/news/...
Happy to answer any questions!
@francesco_sullo One of the big aspects of this is we've built a rich, Rust based framework called Trussed that makes it easy to develop new apps for the device. Our PIV and FIDO2 apps are based on this, and we plan to add an HOTP app alongside a set of tutorials. Adding apps to support crypto wallet functions would be totally possible!
SoloKeys
SoloKeys
NextDrop
Lingo.dev