I would suggest against having the security key to be your wallet. Wallet should be a wallet, while security key should be a security key. Having them combined means more lines of code, more place to developers to fail.
YubiKey is great, soon there will be Mullvad security key too.
reply
I think (now) you are right
reply
Trezor Model 1 U2F Trezor Model T FIDO2
reply
yes! FIDO2 support, thanks! https://trezor.io/learn/a/what-is-fido2
I see it works a bit differently now - you can't recover your FIDO2 login to a different device.
You CAN recover your FIDO2 login to the SAME device (eg after a wipe) but ONLY if you first backed up the "credentials"
Bear in mind that the credentials are bound to the seed with which they were created. You cannot transfer them to a device which is initialized with a different seed.
reply
Bitbox02 Multi (not the bitcoin-only edition). Ignore the shitcoins and use the U2F.
Works for me.
reply
Ledger also supports U2F, however that is an older standard that is being deprecated across browsers in favour of WebAuthN / FIDO2
reply
Sorry, I did not know there was a difference.
Is there any service that uses FIDO2 and not U2F that I can test?
reply
vaultwarden
reply
I actually host my own vaulwarden and didn't even know about this. Might buy a new yubikey just to try it out.
reply
fido2 keys are cheap and work.
reply