There are a few threads around that talk about Fido2 requiring Google Play Services to work on GrapheneOS.
From what I understand there is currently no Open Source implementation of this that we could use.
I am interested in understanding more about what it would take to build one.
As a focused use-case I would like to get my YubiKey UF2 working in Vanadium, but I am also interested in knowing how that might differ if we were to expand to App-based Fido (no browser), using the Titan chip, and other extensions/improvements that should be done. What SHOULD the implementation look like?
Here are a couple of prompting questions:
- Does this need to be build into Vanadium / GrapheneOS or build a a Standalone App/Service?
- How do we get Vanadium to use this implementation? Does the App need to register as some kind of handler and implement a specific API?
- How does this app interface with the YubiKey and/or Titan chip?
- Are there any technical blockers that would prevent someone building this?
I saw fido-browser mentioned in another thread but it's no longer maintained. I would also like to stick with Vanadium if possible.
Feel free to correct any assumptions I've made in the above.
Any technical information / guidance / links around this will be much appreciated :)