Skip to content

Getting started with OpenSK

Introduction

This tutorial provides a quick introduction to making your own OpenSK FIDO2 authenticator with nRF52840 MDK USB Dongle.

Requirements

Before you start, check that you have the required hardware and software:

Programming the latest OpenSK firmware

Download the latest firmware and complete the following steps to program the firmware:

  1. Push and hold the button and plug your dongle into the USB port of your computer. Release the button after your dongle is connected. The RGB LED turns green.
  2. It will mount as a Mass Storage Device called UF2BOOT.
  3. Drag and drop opensk-nrf52840_mdk_usb_dongle-<version>.uf2 onto the UF2BOOT volume. The RGB LED blinks red fast during flashing.
  4. Re-plug the dongle and the OpenSK device will start running.

About the Volume Label

The dongle manufactured after July 20 2023 is shipped with the latest UF2 Bootloader 0.7.1, which will mount as a Mass Storage Device called UF2BOOT. If you are running the older bootloader, it will mount as MDK-DONGLE.

Testing OpenSK

After flashing the firmware to your dongle, complete the following steps to test it:

  1. Visit https://webauthn.io/ in a supported web browser, for example, Google Chrome.
  2. Enter an example username and then click Register. You will be prompted to choose the way to create a passkey. Select USB security key.

  3. Plug the dongle into the USB port of your computer. Red LED and Blue LED are blinking, which asks you to confirm the transaction with a button press.

  4. After the button is pressed, you will be prompted to enter a PIN for your security key. Just enter your PIN and click Next.

  5. Red LED and Blue LED are blinking again and press the button again to complete the request. Then you will see the success notification.

  6. Now try to authenticate by click Authenticate. You will be prompted to enter the PIN you set above. Just enter your PIN and click Next.

  7. Red LED and Blue LED are blinking and you are asked to confirm the request with a button press. Press the button and you will be logged in.

Explore More

The two-factor authentication (2FA) has been successfully deployed by a growing number of websites and platforms, including Google, social networks, cloud providers, and many others. Happy trying!