Determine userverification method and transport method

47 views
Skip to first unread message

Dennis Kniep

unread,
May 19, 2022, 12:33:56 PM5/19/22
to fido...@fidoalliance.org
Hello,

is it planned or maybe already possible to detect the method which was used for userverification (PIN, Biometrics like Fingerprint, Face recognition etc.)? And the used transport method (USB, NFC, BLE)?

Cheers,
Dennis

Emil Lundberg

unread,
May 19, 2022, 12:55:27 PM5/19/22
to kniep...@gmail.com, fido...@fidoalliance.org
There's the `uvm` extension, which can tell you the user verification method if the authenticator and client supports it: https://www.w3.org/TR/2021/REC-webauthn-2-20210408/#sctn-uvm-extension

The draft of WebAuthn L3 has an `authenticatorAttachment` property which can tell whether a platform or cross-platform authenticator was used: https://w3c.github.io/webauthn/#dom-publickeycredential-authenticatorattachment
But there is no way for an RP to tell more precisely what specific transport was used if the authenticator supports more than one cross-platform transport.
Note that `authenticatorAttachment` may or may not yet be implemented by clients.

Emil Lundberg

Software Engineer | Yubico




--
You received this message because you are subscribed to the Google Groups "FIDO Dev (fido-dev)" group.
To unsubscribe from this group and stop receiving emails from it, send an email to fido-dev+u...@fidoalliance.org.
To view this discussion on the web visit https://groups.google.com/a/fidoalliance.org/d/msgid/fido-dev/CADdO0CWNw2fygg2YQO33YcwnJTR%2BRdh2AK5shypwuUwJaToEFQ%40mail.gmail.com.
Reply all
Reply to author
Forward
0 new messages