Stack Overflow
Stack Overflow

Questions tagged [fido]

FIDO (Fast IDentity Online) is an organization which aims to substitute old password authentication with modern password-less solutions. It tries to achieve that by introducing three main protocols : UAF, U2F, FIDO2. Use this tag for questions referring to the FIDO protocols (UAF, U2F, FIDO2).

144 questions
1
vote
0 answers

Does iOS and MacOS support FIDO2 for native apps (Flutter)?

Apple's Safari browser supports WebAuthn now. However, I couldn't find information on if Apple MacOS and iOS support FIDO2 API calls natively. This is for a Flutter cross-platform app. References: Implementing FIDO2 (WebAuthN) in Native iOS Fido2…
Thomas
  • 349
  • 3
  • 11
1
vote
1 answer

How to remove Webauthn credentials from Platform Authenticator?

When you register a Webauthn credential, the private key gets stored in the device(Platform Authenticator/Roaming authenticator). This credential is mapped to the domain(say, www.mydomain.com) of the Relaying Party(RP). When you decommission a…
Manoj Amalraj
  • 535
  • 1
  • 5
  • 14
1
vote
3 answers

Delete Fido2 keys on Windows Hello for different account

I’ve recently been working on a project involving FIDO2. While working on this project, I generated several FIDO2 keys on Windows Hello in my laptop (OS: Windows 10 Enterprise 22H2) using a non-admin account. I now have about 40. I’ve been looking…
erionpc
  • 368
  • 3
  • 15
1
vote
1 answer

Using CredUIPromptForWindowsCredentials to authenticate a FIDO2 token

I have an Azure AD joined system set up to log on using FIDO2 tokens. With that token I am able to logon as well as unlock the Windows 10 computer so I know that the token is registered and working. When I try to authenticate a user's YubiKey using…
Edz1o
  • 21
  • 3
1
vote
1 answer

Any cordova plugin to add WebAuthn API to Android WebView?

We've developed a cordova app that shows one of our websites (which is also accessible using a web browser). Recently, FIDO2 authentication using WebAuthn has been added to that website. This works fine in the tested browsers (Chrome and Firefox),…
Victor
  • 11
  • 2
1
vote
1 answer

Using CTAP2 to authenticate to an app on the same device

CTAP2 allows apps on mobile phones to act as roaming authenticators. An app may implement the protocol over one or more of the supported transports. However, there are use cases where the web or native app being accessed would be run on the same…
Frank
  • 903
  • 7
  • 14
1
vote
1 answer

Challenge fetched from sever does not match challenge created by ASAuthorizationPlatformPublicKeyCredentialProvider credential creation request

I followed WWDC 2022 passkeys video and I am trying to register a passkey for my service in iOS as described in that video. Below is the function where I obtain challenge from server and then make use of…
letsbondiway
  • 470
  • 3
  • 18
1
vote
1 answer

What is the difference between FIDO2 vs Push for a mobile app

I'm trying to understand the difference between biometrics triggered by a push notification (most used) vs using FIDO2 in a native mobile app. This refers to Multi Factor authentication. What's the difference in terms of security and…
geolykos
  • 383
  • 1
  • 5
  • 15
1
vote
1 answer

Limit accepted cross-platform authenticators WebAuthn API

I'm currently creating a POC for WebAuthentication and I'm looking at a scenario where we could use cross-platform authenticators as a 2FA method. So essentially: user logs in to their account on the site, and proceeds to register an authenticator…
Charise
  • 55
  • 3
1
vote
0 answers

Implement Fido2 in Android and iOS using React Native

I want to enable Fido2 authentication for passwordless login for my app. I read about Fido2 , but did not get proper information and the documentation is not clear, how to create the server and how it verify the data and all. What I get till now…
DevPy
  • 439
  • 6
  • 17
1
vote
1 answer

WSO2 IS 5.11 - Unable to use FIDO authentication on Apple devices

Summary: WSO2 IS 5.11 has been installed and configured with FIDO as a local authenticator for a service provider. As a user on an Apple device attempting to log into a service provider using the FIDO local authenticator, the user is immediately…
Riley
  • 403
  • 3
  • 12
1
vote
1 answer

Enrollment strategies for FIDO2/WebAuthn when using built in authenticators

This is more of a philosophical question rather than a technical one but I think it's still relevant even if it boils down more to UX design than anything else. It's 2021, hardly anyone has a Yubikey or similar but nearly everyone has a phone,…
mackie
  • 4,996
  • 1
  • 17
  • 17
1
vote
2 answers

Why WebAuthn API at browser restructures data from authenticator to relying party in WebAuth?

During registration, the authenticator response includes a public key and attestation data as can be seen at https://developers.yubico.com/WebAuthn/WebAuthn_Developer_Guide/WebAuthn_Client_Registration.html. The attestationObject in step 4 is…
tarun14110
  • 940
  • 5
  • 26
  • 57
1
vote
1 answer

About WebAuthn(FIDO)

I was testing out WebAuthn in front side(this means no backend thingy, like challenge, id, etc.) Why does icon matter? When I first tried, I could only auth with a security key. But when I added an icon: undefined to publickey.user.icon, I could…
sh9351
  • 33
  • 1
  • 9
1
vote
1 answer

ldap/openid connect with FIDO2?

I want to design my private cloud with multiple services to make my live eassier. For better usability, I want to be able to login with the same credentials. For that I looked at ldap and openID especially openldap and freeipa. But with FIDO2 coming…
8bit
  • 528
  • 2
  • 6
  • 25
1 2 3
9 10