Proposed Features

Description: Enable FIDO2/U2F hardware keys for 2FA or passwordless login.

Implementation: Support YubiKey, Titan, etc., with fallback options (e.g., authenticator codes).

Benefits: Phishing-resistant authentication for secure access across platforms.

Description: Integrate FIDO2 passkeys for passwordless login via hardware keys or device biometrics.

Implementation: Support device-native passkeys (e.g., Windows Hello, Face ID) and key-based passkeys.

Benefits: Simplifies login while maintaining high security.

Description: Store XSalsa20 encryption keys on hardware keys for zero-knowledge security.

Implementation: Support secure key storage and rotation, with encrypted recovery codes.

Benefits: Strengthens encryption by keeping keys off vulnerable devices.

Technical Considerations

Use FIDO2/U2F standards for compatibility.

Ensure cross-platform support (web, desktop, mobile).

Protect against key cloning and align with S3Drive’s quantum-resistant encryption.

Benefits

Phishing-resistant, passwordless authentication.

Secure encryption key storage.

Alignment with industry trends (e.g., Apple, Microsoft passkeys).