Pleroma Microblog

Pleroma Microblog

Im thinking of picking up a totp physical key. Anyone got a recommendation? It must work with free software and preferably open hardware.

@anjan I don't have one yet but my first choice would be Nitrokey. I plan to get the Nitrokey 3 when it's released.

@hexmasteen Whats in the nitrokey 3? Should I wait too?

@hexmasteen I know yubikey recommends you buy 2 yubikeys (one as a backup). Is that the same for nitrokey? What happens if I lose my nitrokey?

@anjan For the FIDO-part the FAQ explains backups. https://www.nitrokey.com/documentation/frequently-asked-questions-faq#what-happens-if-i-lose-my-fido-device

If you have more detailed questions you can contact them in the fediverse: @nitrokey

@hexmasteen Any reason for choosing nitrokey over yubikey? Yubikey seems to have more features and is cheaper.

I would prefer open hardware but I am also a poor student. It's fine if yubikey still supports free software through and through.

@anjan The products are similar, yes. Yubico is the silicon valley startup that is probably cheaper because they produce higher numbers. Nitrokey is an active part of the FOSS-community. But please do your own research and think about your priorities.

@anjan @hexmasteen yes. buy two.
if one gets lost or broken, you lose all your accounts, which are secured by this key.

@anjan @hexmasteen
i also bought 2 nittokeys 3 in february (delivery is hopefully in july... pandemic reasons in delivering needed parts...), because nitro comes from germsny, is produced in germsny, and its full FOSS... thats why i've choosen nitrokey. and as poor student... yes its cheaper to use yubi at the moment... but you won't miss this few euros or dollars more never a few month later...

put the money for the keys in a box. every month 20 or 30 bucks, and then buy the first. and then do the same for the second key. you will never miss that money. 😉
replies
2
announces
0
likes
0

@jakob @hexmasteen

I just ordered a starter nitrokey. I did some research and found some stuff about yubikey I didnt like. Ill write a blog post about it when my nitrokey comes.

I realized I can use ssh via gpg and all my otp secrets are encrypted via gpg. I guess the totp wont be generated on the device which is kind of insecure but I have too many accounts that wont fit on the key anyways.

I wont be using FIDO2 for anything.

Excited to use it!

@jakob @hexmasteen Thanks for the guidance guys! I didnt even know about nitrokey.