PIN set issue with webauthn

47 views
Skip to first unread message

Williams R Milner

unread,
Sep 30, 2024, 10:15:45 AMSep 30
to FIDO Dev (fido-dev)
Most users know that the default min PIN length is 4, but the CTAP 2.0 specification allows for a min PIN length that is greater than 4, and in CTAP 2.1 the minPINLength property was added to the authenticatorGetInfo response to allow the platform to get the min PIN length so that it can provide proper UI guidance.

Authenticators that support FIPS 140-3 have a min PIN length requirement of 8, so the UI guidance is very important.
Reply all
Reply to author
Forward
0 new messages