Has anyone tested (intentional or not) whether the #token2 PIN+ Dual Release3.3 is water proof?

@kkarhan @Wrewdison @nitrokey

Is it worth mentioning #Token2 as a FOSS #yubikey alternative too?

https://www.token2.net/site/page/compass-security-schweiz-ag-completes-independent-public-security-review-of-token2-pin-fido2-security-keys

#FOSS #hardwareKey #2FA #openSource #FIDO

Switching from #Nitrokey Pro 2 with rsa2048 key to #Token2 with ed25519 key means switching from rebasing <2 commits a second to an almost instant rebases.

#Gentoo #git #OpenPGP

mist... hab den Pin meines #Token2 Sticks vergessen und sicherheitshalber auch nicht aufgeschrieben ​:awesome:​

Zum Glück hab ich aber fast bei jedem Account, wo ich sonst noch mit #Fido2 angemeldet bin noch zwei weitere Sticks aktiv.

​:ablobsmile:​

@EricAlper
I have so much time for cheap [more] ethical diamonds.
https://www.zeeman.com/nl-nl/campagnes/diamant
I wonder how small a NFC FIDO2 2FA chip could be shrunk for a necklace? Would look natty.
https://www.token2.com/shop/product/t2f2-pin-release3-typec
#diamond #diamonds #token2 #zeeman #jewellery #art #infosec

Just got my Token2 miniOTP-3-i in the mail. Quite a nice device for people who don’t want to store a particular OTP seed on their phone/pc.

It’s programmed via NFC, with an Android or iOS App: the App will read the QRcode during registration and push («burn») the OTP seed onto the miniOTP card. You can also manually input the seed into the App.
The card can store only one OTP seed.

The display is easy to read, the card is really small and barely thicker than a credit card.

Despite the nice user experience so far, I am really disappointed about the refresh of the code: when the OTP expires, you have absolutely no way to know. The device will not refresh the 6 digits code, you have to turn off and on again the card to refresh the OTP. The default setting turns off the display after 15 seconds, so you can’t have an OTP older than ~ 45 seconds (assuming you press the button in the second before the current OTP expires). As most TOTP verifiers will accept the N-1 OTP it’s not a very big deal. But if your are in a more stringent context where only the current OTP is valid, don’t buy this token.

#TOTP #token2 #miniOTP #MFA #2FA

I didn't buy that Token2 model because of its NFC capability and USB-C connector, but because it's the cheapest #FIDO2 token supporting Ed25519-SK. I did try out using it with my #Fairphone 3 running /e/OS with #MicroG, and it worked fine.

The silicon case I ordered along with the #Token2 key is unfortunately a bit too thick and thereby prevents the key's USB-C connector from being inserted properly into the FP3 if it's wearing its rubber case as well, which makes NFC a bit tricky too.

Besides the #Nitrokey FIDO2, I also already have a Nitrokey U2F & a Solo Somu from #SoloKeys, so I wasn't too keen on paying 50€ + shipping for a new Nitrokey 3A Mini – a product I wouldn't need if my old key's firmware had been updated.

Instead, I bought a 🇨🇭 Token2 PIN+ Dual R3 whose hardware and firmware is also open-source and which costs only 25€ + shipping: https://www.token2.eu/shop/product/pin-dual-release3-fido2-1-key-with-openpgp-and-otp-and-dual-usb-ports #T2F2

The only downside is that #Token2 manufacture their products outside Europe (Nitrokeys are made in 🇩🇪).

Auf einem #android #xiaomi #Redmi Handy öffnet sich sofort automatisch die #eRezeptApp wenn ein #nfc #passkey erkannt wird. Wie kann ich das abstellen?

Ich kann so keinen NFC Passkey registrieren, nur über USB 😵‍💫

Egal ob #Thetis, #Token2, #Cryptnox oder #Yubikey

I am looking to buy a set of hardware security keys. The #yubikey seems to be the most common and best documented, but the lack of open source and upgradable firmware puts me off. #nitrokey seems like a better option in this regard, but the design is not as nice. I would also very much like a key that combines both USB-A and C. I have now found the #token2 [PIN+ Dual Release3](https://www.token2.com/shop/product/pin-dual-release3-fido2-1-key-with-openpgp-and-otp-and-dual-usb-ports) which fulfills this, but the company is completely unknown to me, and I haven't found much discussion of their products online, which makes me a bit reluctant. They are, however, a member of the FIDO alliance, which is reassuring. The Linux support for their tools also seem to be second-grade. Does anyone have any experience with them?
I intend to use the key for FIDO U2F/FIDO2 authentication, as well as TOTP for the services that do not yet support FIDO. I also want to use it for storing my PGP and SSH private keys.
#U2F #FIDO #FIDO2 #TOTP #hardwaresecuritykey #cybersecurity

Ich hab vor zwei Wochen zwei #Token2 als #Passkey eingerichtet. Ratet mal, wer beide Keys zu Hause vergessen hat…

Gerade für ein paar Konten zwei #token2 als #Passkey eingerichtet. Amazon, Google, Mastodon, Discord und (berufliches) Microsoft sind damit erstmal abgesichert. Morgen schau ich mal, welche Services das noch können.

Token2 is an open-source Swiss FIDO2 security key that brings innovative features at a cheaper price

https://squeet.me/display/962c3e10-0084ec9b-cea78e5abcbf8b5d

OTP Token, TOTP token, Replace your mobile authenticator with secure hardware OTP token! Easily programmed via NFC. Designed to use with Google, Facebook, Dropbox, GitHub, Wordpress, Office 365, Azure MFA etc.

Token2 is an open-source Swiss FIDO2 security key that brings innovative features at a cheaper price

Token2 is a cybersecurity company specialized in the area of multifactor authentication. Founded by a team of researchers from the University of Geneva with years of experience in the field of strong security and multifactor authentication. Token2 h ...continues

See https://gadgeteer.co.za/token2-is-an-open-source-swiss-fido2-security-key-that-brings-innovative-features-at-a-cheaper-price/

#authentication #opensource #security #technology #Token2

Oh, hey sexy #fido #fido2 #token2 #passkey

Auf Heise bin ich gerade über #Token2 gestolpert. Schaut erstmal interessant aus.

token2.com/shop/category/pin-p…

Hat wer von Erfahrung mit dem Herstellern?

Bisher nutze ich zwei Yubikeys, an denen mich wenig stört.

@jpmens 😣 I've already tested the #Token2 #Authy exporter, it's crazy barebones but works. Also, #Bitwarden includes verbatim seeds in its export JSON. Do with that information whatever you wish. 🤐 https://github.com/token2/authy-migration

If you NFC token does not get through the protective aluminium casing... just take your drill.

#security #token2 #fido2

Good news : Response from Token2 :

We've already phased out that form factor, particularly the USB-A version. Apart from the interference caused by the metallic case, we found that the physical push button was less reliable compared to the capacitive touch version.
https://www.token2.com/shop/category/u2f-and-fido2-keys

@mshelton @maxeddy @nytimes
Could be, but you should really consider the #token2
T2F2-NFC-Dual FIDO2, U2F and TOTP Security Key with NFC, USB-A and USB-TypeC Connectors

That is 20EUR and hypercompatible.

https://www.token2.com/shop/product/token2-t2f2-nfc-dual-fido2-u2f-and-totp-security-key-with-nfc-usb-a-and-usb-typec-connectors