Ledger Hardware Wallet Integrates U2F Authentication

Published at: June 17, 2015

Update: This article was based on Ledger's post on Medium.com, which insinuates that Ledger will integrate full FIDO features. We've been told that this is not true, however. Ledger says they will add U2F authentication, but not biometric. We apologize for the error.

The next generation of Ledger, a smartchip-based Bitcoin hardware wallet similar to Trezor, will be compatible with the authentication features of Fido Alliance – namely external dongles and fingerprint readers.

Ledger says they will employ Fido Alliance's Second Factor (U2F) and Passwordless (UAF) authentication types.

Of U2F authentication, a Ledger spokesperson tells Medium:

“[It] uses Elliptic Curve Cryptography (on Bitcoin neighbor curve secp256r1) to replace the typical OATH-TOTP validation by a cryptographic challenge performed by a hardware token [dongle]. It is designed to prevent against phishing [...] and protects user privacy by mandating a different key generation per website account.”

The UAF authentication, on the other hand, is where biometric (read: fingerprint readers) come into play. The Ledger spokesperson further explains:

“UAF recognizes the user (with a PIN, biometrics or other methods) and uses Public Key Cryptography (and natively supports the Bitcoin curve secp256k1) to authenticate with the remote service.”

These two types of authentications are following a wider push toward more secure and even passwordless logins to Web services in general. The public-key cryptography employed by Bitcoin has created an environment in which private keys – not emails, usernames, or passwords – may become the preferred method for online authentication.

Ledger has not announced an exact release date for their coming wallet iteration. Fido Alliance will make a presentation in London in fall 2015 on their biometric standards and applications.

Tags
Security
Authentication
Hardware Wallet
Ledger
Related Posts
Ledger Wallet Warns of Fake Google Chrome Extension Stealing Crypto
Major cryptocurrency hardware wallet supplier Ledger has warned its users about another phishing attack trying to steal their crypto — this one using a Google Chrome extension. In a March 5 tweet, the French crypto company specified that there is a fake extension on Google Chrome browser that attempts to steal users’ crypto by asking them to enter their 24-word recovery phrase to access their wallet. Ledger Live gets removed from the Chrome Web Store The phishing attack was reported by Catalin Cimpanu, a cybersecurity reporter at business technology news website ZDNet on March 4. According to Cimpanu, the malicious …
Altcoin / March 6, 2020
Crypto Exchange Rokkex Incorporates Ledger Vault to Improve Security
French hardware wallet producer Ledger will provide its asset management system to Estonia-based crypto exchange Rokkex. Cybersecurity-focused exchange Built by Lithuanian cybersecurity and fintech professionals, Rokkex will integrate its trading platform with Ledger’s enterprise wallet management solution Ledger Vault to secure its crypto assets, according to a news release shared with Cointelegraph on Aug. 20. Lukas Krikstaponis, Rokkex’s co-founder and CEO, said that the platform has successfully tested Ledger’s technology on its platform to date. Demetrios Skalkotos, global head of Ledger Vault, explained: “Rokkex’s customers expect full transparency and protection from crypto hacks. [...] By leveraging Ledger Vault, Rokkex will …
Altcoin / Aug. 20, 2019
Trezor Responds to Ledger Report on Vulnerabilities in Its Hardware Wallets
Prague-based crypto wallet manufacturer Trezor has responded to а report about hardware vulnerabilities from its competitor Ledger on Tuesday, March 12. Trezor claims that none of the weaknesses revealed by Ledger in a detailed report on March 10, are critical for hardware wallets. As per Trezor, none of them can be exploited remotely, as the attacks described require “physical access to the device, specialized equipment, time, and technical expertise.” Trezor further cites the results of a recent security survey performed in partnership with major cryptocurrency exchange Binance. According to the survey, only around 6 percent of respondents believe that physical …
Blockchain / March 12, 2019
Crypto Software Firm Blockchain.com Launches Ledger-Powered Hardware Wallet
Crypto software company Blockchain.com has launched a new hardware device that integrates with its existing online wallet, developed in partnership with crypto hardware security firm Ledger, according to a press release shared with Cointelegraph today, Oct. 25. A hardware crypto wallet is a form of so-called “cold storage,” which allows users to keep their crypto holdings and private keys offline in order to safeguard against theft via a remote attack. The new device, dubbed “Blockchain Lockbox,” is reportedly only compatible with the company’s online Blockchain Wallet, and has been designed to allow users to store all or a portion of …
Bitcoin / Oct. 25, 2018
‘Father of the iPod’ helps Ledger create new cold crypto wallet
Hardware wallet provider Ledger, known for its cold-storage devices, announced its seventh crypto wallet in collaboration with the creator of the original iPod. Tony Fadell, the inventor of the iconic iPod Classic model, has partnered with Ledger to help the company design its latest wallet device known as Ledger Stax. The company broke the news on Dec. 6 at Ledger’s bi-annual Web3 developer event, Ledger Op3n, in Paris. Ledger’s upcoming new hardware wallet is a credit card-size device that features a large E Ink display, capacitive touch, Bluetooth support, wireless charging and more. For the first time in Ledger's product …
Bitcoin / Dec. 6, 2022