Consider supporting the optional Curve25519 cipher #1

SEJeff · 2019-10-21T15:44:42Z

From the FIDO 2 specification ed25519 is Recommended:

Name: Ed25519
Value: 6
Description: Edwards-curve Digital Signature Algorithm on curve 25519
Reference: [RFC8032]
Status: Recommended

It isn't in the supports ciphers in the README or anywhere in the source. Just thought I'd add this here as a "nice to have". Thanks!

The text was updated successfully, but these errors were encountered:

x448 · 2019-11-08T00:15:41Z

Do you have a FIDO2 key that supports ed25519? If so, can you provide test data with embedded certs using ed25519? Thanks in advance!

mitar · 2023-12-01T13:19:25Z

So Yubikeys now use Ed25519 with -8 code. I tried to register:

const COSEAlgEdDSA = -8
webauthn.RegisterSignatureAlgorithm(COSEAlgEdDSA, x509.PureEd25519, x509.Ed25519, 0)

but it does not work. It seems the rest of the code does not support it (for example, assumes there is always a hash involved).

fxamacker added waiting Waiting for reply or action enhancement New feature or request labels Nov 8, 2019

Provide feedback