Y
Hacker News
new
|
ask
|
show
|
jobs
by
michaelt
2955 days ago
Sadly, the Secure Enclave doesn't support HMAC-SHA-1 or importing keys [1] so it's not compatible with the industry standard TOTP 2fa mechanism.
[1]
https://developer.apple.com/documentation/security/certifica...
2 comments
monocasa
2955 days ago
I think we can do a lot better than the industry standard TOTP 2fa system anyway. TOTP involves sending plaintext private keys around during setup.
link
amluto
2955 days ago
Fortunately, we have WebAuthn now. Hopefully Apple will jump on board soon.
link