For this reason, roaming authenticators are also referred to as cross-platform authenticators.Įxamples: Tapping a USB security key, authenticating using a smartphone when logging in from a laptop Platform authenticatorĪ platform authenticator is built into the user device that acts as the FIDO client. These authenticators enable users to carry their credentials and use them to authenticate on multiple devices. Roaming authenticators connect with client devices over USB, Near-field communication (NFC), or Bluetooth. Roaming authenticatorĪ roaming authenticator is a device separate from the client device that can perform FIDO authentication. There are two types of FIDO authenticators: roaming authenticators and platform authenticators. FIDO authenticators are also responsible for generating keypairs during user registration, protecting private key details, and signing digital certificates for attestation. Users interact with FIDO authenticators to verify possession and/or confirm their identity. The Client to Authenticator Protocol (CTAP), which enables the client to communicate with a roaming authenticator such as a hardware security key or a smartphone.įig: FIDO2 components What is a FIDO authenticator?Ī FIDO authenticator is a piece of hardware possessed by the user that is capable of performing FIDO authentication. The Web Authentication API ( WebAuthn), which enables applications to authenticate users with possession-based and biometric authentication. The Alliance’s mission is to develop and promote passwordless authentication standards and protocols.įIDO2 (sometimes spelled “FIDO 2”) consists of two components: The FIDO2 specification was developed by the FIDO (Fast IDentity Online) Alliance, which is an open industry consortium formed in 2013. Instead of passwords, FIDO authentication uses registered devices or FIDO2 security keys to validate user identities. FIDO2 is an open standard that enables users to log into applications without using passwords on both desktop and mobile environments.
0 kommentar(er)
