Version 4 with WebAuthn/FIDO2 Support

Hardware Security SDK version 4.0.0 has been released. It supports the WebAuthn standard, which is part of the FIDO2 set of standards. Finally, we bring passwordless WebAuthn logins to Android working with security keys and smartcards over NFC and USB.

No Additional Cloud Services

Our WebAuthn solution is a standard-compliant clean-room implementation that works with any FIDO2 server. In contrast to Google’s FIDO2 APIs, our SDK works without Google Play Services. Thus, it also works in countries where phones do not ship with Google Play.

Support for WebViews

In contrast to Google’s FIDO2 APIs, our API works with WebViews. Check out our simple guide how to enable WebAuthn support in your app’s WebView.

Standards Compliant

The FIDO Alliance does not certify native FIDO2 clients. However, our SDK has been successfully tested with a wide variety of FIDO2 authenticators. It has been implemented by carefully following the FIDO2 standards.

Hardware Security SDK Client to Authenticator Protocol 2 (CTAP2)
FIDO2 Artifact WebAuthn Specification

Custom Implementations

It is definitly possible to send/receive non-standard commands between your Android app and a security key/smartcard. If you have special use cases, don’t hesitate to contact us at contact@cotech.de.

Can I use the Hardware Security SDK in my app?

Yes, we would love to get in touch with you. Please contact us at contact@cotech.de.

Avatar
Dr. Dominik Schürmann

Before founding COTECH, Dominik Schürmann was a researcher at the Technische Universität Braunschweig and worked on network security and cryptographic protocols. Yet, he did not lose sight of the usability aspects of IT security and conducted several user studies.

Passwordless Password Manager

COTECH is also developing the next-generation password manager. Login easily with your smartphone, without entering a master password!

Sign up for our beta, starting next month: