Passkey Definition specifics

[My1]

Hi,

I just noticed a little contradiction in the Passkey FAQ from the FIDO Alliance website.

https://fidoalliance.org/faqs/#PasskeysFAQs

At first it says "Any passwordless FIDO credential is a passkey."

but later on it says "From a technical standpoint, passkeys are FIDO credentials that are discoverable by browsers or housed within native applications or security keys for passwordless authentication"

so what is it now? any passwordless credential or only discoverable ones?

because a credential does not need to be discoverable to be passwordless (just set userVerification to true after you check the username), discoverability is more important for usernameless sign in.

Regards

[Tim Cappalli]

A passkeys is a WebAuhn discoverable credential. 

--
You received this message because you are subscribed to the Google Groups "FIDO Dev (fido-dev)" group.
To unsubscribe from this group and stop receiving emails from it, send an email to fido-dev+u...@fidoalliance.org.
To view this discussion on the web visit https://groups.google.com/a/fidoalliance.org/d/msgid/fido-dev/CACHSkNosw%3DQVYNFwopyJTHEoVbYRJVz2qnGQ4TyrcsubMjt%2BqA%40mail.gmail.com.