OpenSK is an open-source implementation of FIDO2 (WebAuthn + CTAP) security keys, written in Rust and designed to run on affordable microcontroller boards. It provides the full authenticator stack—USB/NFC transport, CTAP protocol handling, credential management, and cryptographic operations—so you can build and audit your own hardware token. The project emphasizes defense-in-depth: memory-safe Rust, hardened crypto, isolation via an embedded OS, and explicit user presence/verification flows. Developers can flash reference hardware, customize UX (LEDs, buttons, PIN), and experiment with extensions while staying interoperable with major browsers and platforms. A test and conformance suite validates protocol behavior against the WebAuthn/CTAP specs to ensure compatibility.

Features

  • Full FIDO2/WebAuthn authenticator stack in Rust
  • USB and NFC transports for desktop and mobile use
  • Credential storage, PIN management, and resident keys
  • Hardware reference designs and flashing instructions
  • Conformance tests to validate CTAP/WebAuthn behavior
  • Extension points for custom UX or experimental features

Project Samples

OpenSK Screenshot 1

Project Activity

See All Activity >

Categories

Security

License

Apache License V2.0

Follow OpenSK

OpenSK Web Site

Other Useful Business Software
$300 in Free Credit Towards Top Cloud Services Icon
$300 in Free Credit Towards Top Cloud Services

Build VMs, containers, AI, databases, storage—all in one place.

Start your project in minutes. After credits run out, 20+ products include free monthly usage. Only pay when you're ready to scale.
Get Started
Rate This Project
Login To Rate This Project

User Reviews

Be the first to post a review of OpenSK!

Additional Project Details

Programming Language

Rust

Related Categories

Rust Security Software

Registered

2025-10-09
Report inappropriate content