Android Fido2 BLE Authenticator support

[Jedri Visser]

Does the play services fido2 api's actually support the CTAP2 protocol for a BLE authenticator?

I am offering all the mandatory services and characteristics (I think). According to the protocol overview, the client should check the fidoServiceRevisionBitfield and select a supported version, but never does. Instead it starts by reading the fidoControlPointLength and registering for notifications on the fidoStatus characteristic and then starts sending u2f messages (a U2F_VERSION message).

[Christiaan Brand]

I'm pretty sure there's no support for CTAP2 in Android yet.

[Jedri Visser]

Thanks for the reply

[Bảo Hoa Quốc]

Currently, BLE is support by only Chrome on Android. If you want to test please try with Chrome on Android. However, the protocol is not U2F raw message, it is FIDO2, exactly CBOR message. In the future, CTAP2 will support U2F raw message for backward compatibility.

[Jedri Visser]

I was hoping for CTAP2 messages with CBOR data, but that is not what I received. I received a U2F message (the command was not 0x01 - MAKE_CREDENTIAL, 0x02 - GET_ASSERTION or 0x04 - GET_INFO but 0x00 which is a U2F command)