U2F support 2 factor
We do not plan to support FIDO U2F. Instead, we are working towards support for FIDO 2.0 Web APIs which supports similar 2FA scenarios and will be integrated with Windows authentication methods via Microsoft Passport (e.g. biometric devices via Windows Hello, or PIN).
This page https://developer.microsoft.com/en-us/microsoft-edge/platform/status/fidou2f/ mentions that U2F is not supported neither by Chrome, neither by Firefox which is wrong. Chrome supports U2F starting from v38, Firefox since v57.
It would be nice if you guys add support for FIDO U2F, not just to be used with Microsft Edge, but also to outlook as second factor for e-mail.
Anthony Grimes commented
So you're going to do what Windows has historically done and roll your own half-assed standard nobody will use? Well, there goes any chance of a yubikey user using your browser. Chrome it is!
Marvin Addison commented
I'm a software developer at a large public US university and U2F tokens have proven very popular in our 2-factor deployment for reasons of both security and convenience. I think it's fair to say that it's a substantial deployment of U2F, so hopefully it moves the needle at least a little in terms of deployment base. I hope Microsoft will reconsider if it reaches what they consider critical mass.
Adam Branom commented
I am incredibly disappointed in the choice to not support U2F. Utilizing a third party token which can include some assurance of actually utilizing a hardware device instead requiring people to make use of Windows Hello is extremely myopic. We currently use Smart Cards but these are not exactly well supported and would like to move to a more modern approach for both employees and outside customers and U2F seems like it could really fill this gap. While Windows Hello may be one acceptable form, U2F tokens cover a large area of scenarios that I do not think Windows Hello can cover. Will Windows Hello even work with other browsers? I know it's not the Edge team's job to develop this but is the plumbing even in place in Windows so that Chrome and FireFox can support Windows Hello? U2F is a real standard that is in use today in multiple browsers and is planned in more and the decision to skip this seems extremely shortsighted. Please reconsider.
@Admin nice! Will support also be backported to IE12? Do you have a rough guess when this will hit production?
mac mac commented
Chrome now supports usb U2F tokens on any domain, firefox is supposedly adding it: https://bugzilla.mozilla.org/show_bug.cgi?id=1065729
Please add this to IE and/or Spartan!