-
See flexsecure-applets/docs/2-hardware.md at master · DangerousThings/flexsecure-applets · GitHub
-
Yes, the Apex can even do JC 3.0.5. secp256r1 is supported, you just have to specify the curve coefficients manually similar to e.g. status-keycard/src/main/java/im/status/keycard/SECP256k1.java at master · keycard-tech/status-keycard · GitHub .
-
At least 133 bytes, possibly more, I am not quite sure.
-
Correct, Fidesmo controls the ISD keys on the Apex. The flexSecure is the same chip but without Fidesmo, meant for developers and power users. You have to ask Fidesmo for a developer account if you want them to sign your applets to load them on Fidesmo-enabled devices.
-
The Source of the Apex FIDO2 applet is currently private. The applet binary is available via Fidesmo for Apex customers.
-
Thats a question for @amal
I think your applet presents an interesting opportunity for collaboration. It would be great to get you in contact with @amal .