Quick U2F Security Exploit Demo and Presentation Announcement
May 05, 2017
Here's a very quick update post. Over the next few days, I'll be creating a proof of concept demo for a security flaw I noticed in the infrastructure of most U2F USB security keys. When that demo gets created, I'll have the source for it available at GitHub. This demo will be used in a security presentation I will be giving about attacks on 2-Factor Authentication. That security presentation will happen on June 8th 6:00pm at K-LUG, the Rochester, MN area Linux User Group. I'll be sure to include the slides of the presentation on my website.
Here is a quick look at what I finished yesterday for the demo.