How do I use FIDO U2F?

    FIDO U2F is a two-factor authentication method (2FA) developed by the FIDO Alliance that is supported on the BitBox02 multi edition, it allows you to strengthen the security of your online accounts. 
    Whether U2F is available or not depends on each website and service you are trying to use it with. Examples of websites that support U2F are: Facebook, Dashlane, Gmail, Dropbox, GitHub, among many others. 
    • FIDO U2F increases account security as both your normal website password and your BitBox02 are required to log in.
    • FIDO U2F is not related to cryptocurrencies. 
    • FIDO U2F needs to be enabled individually for each website you want to use it with.

    Start using U2F

    1. Visit the website for which you want to enable U2F.
    2. Visit the security settings page of that website.
    3. Plug in your BitBox02 and tap a side to choose the screen orientation.
    4. Select that you want to register a "security key"/"second factor authenticator" (this could be phrased differently on each website).
    5. Your BitBox02 will then ask you for your password to unlock the BitBox02. Enter it.
    6. Your BitBox02 will then ask if you want to register a new website. If the website is well known it will show the website name, if not it will say "Unknown site".
    7. Below that, it will show four words that are unique for each website. 
    8. Confirm on your BitBox02 that you want to register this website by tapping the checkmark.
    9. Done, you have now registered a U2F security key for this website which you will need every time you are trying to log back in.

    If you want to test U2F with your BitBox02, use this demo site: https://demo.yubico.com/webauthn-technical/registration


    Important information

    • If you lose access to your BitBox02, you can restore your wallet on a new BitBox02 which also restores your Fido U2F setups and thereby allows you access to your web accounts again.
    Published