Feature Request: HMAC-SHA1 Support

[sauljones1]

Hello,

I noticed you guys have a FIDO-U2F app for the Ledger Nano S but you do not have any support for HMAC-SHA1 Challenge Responses (as seen here: https://www.yubico.com/products/services-software/personalization-tools/challenge-response/)

For offline applications like KeepassXC, there needs to be HMAC-SHA1 support (https://keepassxc.org/docs/#faq-yubikey-why-hmac-sha1) for a fixed secret, which the Ledger should be capable of

I would love to be able to secure my password database with my Ledger device, and I'd be likely to buy more for extra backups if I'm using it regularly to unlock my database.

Thank you, and keep up the good work!

[githorray]

This would be a great backup for a Yubikey.

[My1]

well the yubikey hmac thing is not related to u2f tho

[justingoldberg]

they have to support every rtrdd shitcoin in existence first. People losing coins with updates, promises constantly broken on FIDO2, and the nail in the coffin was Ledger Recover. NEVER TRUST A FRENCH GOVERNMENT SHILL.

[xchapron-ledger]

Hello,
As @My1 says, the way a Yubikey can be used to authenticate on KeepassXC is not related to U2F.
However, there is a feature request to make KeepassXC work with FIDO2.
You can find some information here: keepassxreboot/keepassxc#3560 and there: keepassxreboot/keepassxc#9506.
Note that if it where to happen, it will be implemented by the "Security Key" Ledger application and not the "U2F Fido" one.

[My1]

but sadly the Nano S is excluded