|
|
|
|
|
|
by mimimi31
1257 days ago
|
|
|
>No cryptography can protect against this scenario I remember reading about how MITM is prevented in U2F [1] by using information about the connection as part of the challenge that the authenticator has to sign. Could something similar be possible in this scenario? [1] https://fidoalliance.org/specs/u2f-specs-master/fido-u2f-ove... |
|
|