Speaker: Elie Bursztein, Google and Fabian Kaczmarczyck, Google

Over the years due to the added features the CTAP2 protocol revisions have become increasingly sophisticated and harder to implement correctly. To help cope with this complexity we have developed a new security key test suite that we are excited to make public today. Over the last year, we have successfully used it to validate the new releases of our open-source security firmware OpenSK and test other keys in partnership with various vendors. This talk will provide a brief overview of the tests developed and a demo of how to use the test suite works in practice. It is our hope that open sourcing our test suite will help FIDO members strengthen their implementations and will foster collaboration around building a strong joint testbed that will benefit the community at large.