https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=19886 --- Comment #8 from David Cook <dcook@prosentient.com.au> --- (In reply to Aaron Sakovich from comment #7)
The FIDO alliance has published a new website promoting FIDO2 for both consumers and providers. FIDO2 includes Yubikey and other key vendor support, as well as biometrics (facial scans and fingerprint), and personal PINs.
https://loginwithfido.com/provider/
This is an established and well-supported standard, defined by both the FIDO Alliance and W3C's webauthn. Just dropping this here as I think it might be a better, all-encompassing approach to authentication in general, beyond just adding 2FA, and is way easier for the end-user with its multiple supported authenticators, not just a single vendor's hardware key.
Sounds good to me. -- You are receiving this mail because: You are watching all bug changes. You are the assignee for the bug.