What is FIDO U2F?
FIDO U2F is a cutting-edge protocol that enables you to use physical hardware security keys to secure your account. This provides superior security and convenience over having to pull out your phone and race to quickly type in 4-digit PIN with TOTP-based mechanisms like Google Authenticator.
Nanex is one of the only cryptocurrency exchanges in the world that supports FIDO U2F.
Authorizing new orders and withdrawal requests is as simple as tapping a key plugged into your machine (or if you're on mobile and have an NFC-enabled YubiKey, placing the key near your phone's NFC reader)
We support any FIDO U2F device, such as the entire range of Yubico's YubiKeys as well as popular cryptocurrency hardware wallets like the Trezor and Ledger Nano S. At this time you must be using Google Chrome or Android to utilize FIDO U2F. Firefox Quantum support is coming soon.
Before you can register your U2F device, you must first log into your account and go to the 'Two-Factor Authentication' page under the Account tab to acquire a master reset key.
If you've already enabled Google Authenticator, this step can be skipped as you already have a master reset key.
The master reset key is a way for you to fully reset two-factor authentication for both Google Authenticator and U2F via a support ticket. This key MUST be stored safely and securely. We recommend writing it down on a piece of paper and keeping it with other important personal documents.
Request master reset key
To begin, click on 'REQUEST MASTER RESET KEY'. This will bring up a dialog with a 24 letter master reset key for you to write down. Please note that the spaces between the letters are only for display purposes to make it easier to copy down, the key itself has no spaces.
Once you have written down the key in a safe place, go ahead and click 'I HAVE WRITTEN DOWN THE KEY'.
Verify master reset key
Simply type in the key you wrote down (without spaces!) into the text entry. You do not have to press enter. If you've typed in the key and nothing happens, you've made a mistake in copying the key.
Once you've correctly typed in the key, the dialog will close and a notification will pop up stating the master reset key has been registered. Additionally, Google Authenticator and FIDO U2F registration will no longer be blurred out and can be used.
Registering your U2F device
Now for the simple part! For the purposes of this tutorial, we will only cover how registration works with YubiKey. For other devices, please refer to the following pages:
First, ensure that your YubiKey is plugged into your machine and the U2F section states your browser is supported. You should see the following section:
Click on 'REGISTER DEVICE' when you are ready. You will see the following dialog pop up:
If you wish to give your device a nickname (recommended when utilizing multiple U2F devices), you can do so now. Once you're ready, simply tap your YubiKey device and registration will proceed.
Please note that there is a timeout of 60 seconds! If your YubiKey device is not blinking, the timeout has expired and you will have to back out of the registration dialog.
Congratulations! You've registered your U2F device. The U2F section should now look like this:
Note that you can register as many U2F devices as you wish - even different types of devices from different manufacturers! It can also be used in combination with Google Authenticator if you desire - although we don't recommend this if you can avoid it.
Using your U2F device
Whenever two-factor authentication is required, you will see the following dialog pop up on your screen:
Simply tap on your U2F device and you're in!
Managing U2F devices
Managing U2F devices is simple. Click on 'VIEW REGISTERED DEVICES' in the FIDO U2F section and the following dialog will appear with all of your registered devices:
You can see the last time the device was used as well as remove the device from your account by clicking on the red trashcan.