Questions tagged [webauthn]

Browser API implementing the Web Authentication standard. Credentials are stored on (local) authenticators which use and are accessed using strong cryptography.

See Web Authentication: A Web API for accessing scoped credentials:

This specification defines an API that enables web pages to access WebAuthn compliant strong cryptographic credentials through browser script. Conceptually, one or more credentials are stored on an authenticator, and each credential is scoped to a single Relying Party. Authenticators are responsible for ensuring that no operation is performed without the user’s consent. The user agent mediates access to credentials in order to preserve user privacy. Authenticators use attestation to provide cryptographic proof of their properties to the relying party. This specification also describes a functional model of a WebAuthn compliant authenticator, including its signature and attestation functionality.

303 questions

votes

1 answer

Determine passkey supported devices/browsers visiting my website

I am trying to log the support for Webauthn and Passkeys of the devices/browsers visiting my webapp. I am checking webauthn support this way: window.PublicKeyCredential?.isUserVerifyingPlatformAuthenticatorAvailable().then((e: boolean)=> e) and…

webauthn fido passkey

asked Jan 26 '23 at 22:38

Manoj Amalraj

votes

1 answer

Security hardware keys(titan, yubikey,...) to End to End Encryption with Angular

We are using the security hardware key to encrypt/decrypt FOR E2EE within the Angular client-side. For that we are using CryptoJS.AES.encrypt(data, key).toString(); to encrypt and CryptoJS.AES.decrypt(data, key).toString(CryptoJS.enc.Utf8); to…

security webauthn webcrypto-api yubikey

asked Jan 17 '23 at 15:52

Engineer

votes

1 answer

Retrieving WebAuthn Authorization Type

I was wondering if we could, at any point in the WebAuthn Authenthication, be able to retrieve the type used: PIN, Biometric (Face Id, Touch Id) I'm mostly curious, as what I'm really looking for is some insights explaining the amount of Face ID…

webauthn

asked Dec 26 '22 at 14:53

pixelboy

votes

2 answers

How to make a browsers recognize my FIDO2 authenticator?

Hi I'm writing my own FIDO2 authenticator implementation. The firmware runs on a SAM E51 Curiosity Nano. I use tinyusb for the communication with the client (raw usb) and can successfully create new credentials and get/verify assertions using the…

webauthn fido authenticator

asked Dec 01 '22 at 23:00

r4gus

votes

4 answers

WebAuthn: how to get rid of the username requirement?

I'm thinking about adding support for WebAuthn / passkeys to my web app, but the fact that you need to have separate register and sign-in flows, and usernames are still required, make it pretty much a no-go for me. And I am really wondering if I am…

webauthn

asked Aug 31 '22 at 21:29

Kevin Renskers

5,156
4
47
95

votes

1 answer

WebAuthn only shows option for USB Security Dongle in Windows 10 - no option for Fingerprint/PIN/Password

I'm testing WebAuthn (https://webauthn.me) with the intent to implement it in a web portal. However, I need Windows users to be able to use Fingerprint sign in, not just USB Security Key. When testing from Windows 10/Chrome (latest) I only get the…

windows-10 fingerprint webauthn

asked Aug 31 '22 at 16:16

Ryan Griggs

2,457
2
35
58

votes

2 answers

Integrating Passkeys signCount 0

I'm trying to implement passkey into my app. I am wondering if ASAuthorizationPublicKeyCredentialAssertion.rawAuthenticatorData supports signCount. It seems the value is always 0. Thank you!

webauthn password-less ios16 passkey

asked Aug 22 '22 at 17:05

Yuval Sharon

votes

1 answer

FIDO2/WebAuthn "This security key doesn't look familiar."

I am playing with a YubiKey and JavaScript in-browser WebAuthn APIs. I am trying a very minimal "Hello, World!" example which just tries to do a minimal: navigator.credentials.create and then a navigator.credentials.get (with minimal, even…

webauthn fido-u2f yubikey

asked Jul 22 '22 at 14:40

Brad

11,262
8
55
74

votes

1 answer

Direct attestation with Webauthn in Safari

I am creating a React app and am using Webauthn to use device biometrics for authentication. My implementation works perfectly in Chrome however I get an alert saying 'The operation can't be completed' on Safari or any iOS device. The error…

reactjs safari webauthn

asked Jun 22 '22 at 08:24

Shayur Kisten

votes

1 answer

Authenticate with webauthn using iphone on windows?

I have been investigating using webauthn for MFA in my company's application. It looked like a great fit when I started investigating it and I got really excited about the prospect of our users being able to use their phones as…

multi-factor-authentication webauthn password-less

asked Jun 02 '22 at 16:53

ds99jove

votes

2 answers

PublicKeyCredentials Webauthn "internal" authentication missing userHandle on Android (Android Saftynet)

I'm currently able to create publicKeyCredentials using: navigator.credentials.create({ challenge: Uint8Array.from('CCCCCCCCCCCCCCCCCCCCCC', c => c.charCodeAt(0)), rp: { id, name: 'rpName' }, user: { …

android webauthn

asked Jan 19 '22 at 15:21

M1Reeder

votes

0 answers

Android Fido2ApiClient Custom UI to unlock device

Using com.google.android.gms.fido.fido2.Fido2ApiClient#getSignPendingIntent, and start the intent with androidx.fragment.app.Fragment#startIntentSenderForResult, FIDO2 API for Android handles the biometric authentication with standard UI as…

android webauthn fido

asked Jan 10 '22 at 18:21

Andy Witrisna

votes

1 answer

"The operation is insecure." On navigator.credentials.create() on firefox using Mailcow

I'm trying to register a fido2 device in Mailcow using Firefox 95.0.2. When trying to do so, the Registration Status field announces: The operation is insecure. I've managed to track the error down to this line: return…

firefox webauthn

asked Dec 26 '21 at 15:35

JeffLee

votes

4 answers

WebauthN and Yubikey to generate keys for symmetric encryption in a browser. Is this hack secure?

I understand that WebauthN is designed to perform authentication, but I'd like to use my Yubikey to create symmetric encryption keys to encrypt content on my web browser without relying on a backend server. Here's my approach: During the assertion…

encryption webauthn fido yubico yubikey

asked Nov 26 '21 at 23:48

ucipass

votes

1 answer

Webauthn - Windows Hello authenticatorSelection is not working

I am just developing a sample node js application to play around webauthn on Windows 10. challenge: challenge, rp: { name: "Example CORP", id : "localhost" }, user: { id: new…

node.js webauthn password-less

asked Oct 18 '21 at 06:39

siva

1,429
3
26
47

Prev 1 2 3

…

20 21 Next