/kr-u2f

A Browser extension that lets you use your phone as a U2F/WebAuthN Authenticator for strong, unphishable 2FA.

Primary LanguageTypeScript

Krypton for Browsers (U2F + WebAuthN)

Krypton brings Universal Second Factor (U2F) + WebAuthn to the browser using keys stored in the Krypton (iOS or Android) mobile app. The private keys never leave the phone.

Supports Google Chrome, Mozilla Firefox, and Safari.

Install

Chrome/Chromium

Install Krypton Authenticator from the Chrome Extension Store.

Firefox

Install Krypton Authenticator from Firefox Add-ons.

Safari

Install Krypton Authenticator from the Mac App Store.

Build Dependencies

Install / Run From Source

yarn
make build

Then:

Chrome/Chromium

Click the triple-dots in the upper-right > More Tools > Extensions, enable Developer Mode, click Load Unpacked, then select the dist/chromium folder.

Firefox

Click on the three bars in the upper-right > Add-ons, in the resulting page click the gear in the upper-right > Install Add-on From File... , then select the dist/firefox/manifest.json file.

Safari

Code coming soon...

CONTRIBUTING

Check out CONTRIBUTING.md

Security Disclosure Policy

Krypton follows a 7-day disclosure policy. If you find a security flaw, please send it to disclose@krypt.co encrypted to the PGP key with fingerprint B873685251A928262210E094A70D71BE0646732C (full key here). We ask that you delay publication of the flaw until we have published a fix, or seven days have passed.

LICENSE

We are currently working on a new license for Krypton. For now, the code is released under All Rights Reserved.