Credentials for Linux: Bringing Passkeys to the Linux Desktop
6 hours ago
- #Linux
- #FIDO2
- #Passkeys
- Passkeys are now standard on Windows, macOS, Android, and iOS, but Linux lacks standard FIDO2 platform APIs.
- Credentials for Linux is a cross-desktop effort to bring Passkeys and other credentials to Linux, supporting sandboxed apps and browsers.
- The talk includes a refresher on passkeys, platform authenticators, and their current state on Linux.
- Architecture details: libwebauthn (Rust FIDO2/U2F library) and credentialsd (D-Bus service for credential management).
- Demo of sandboxed Firefox using credentialsd with hardware security keys and phones.
- Roadmap includes TPM-backed platform authenticators, origin binding, and collaboration with GNOME, KDE, Flatpak, and distributions.
- Target audience: browser/desktop maintainers, distribution engineers, security practitioners, and those interested in Linux identity management.