Use Case missing for WebAuthn Registration with Roaming Authenticator (smartphone)

67 views
Skip to first unread message

chunilal kukreja

unread,
May 22, 2024, 12:45:55 PMMay 22
to FIDO Dev (fido-dev)
Team,

I am developing a use case where when a user access a protected web app using password-less authn flow, user should be able to verify the user-presence using roaming authenticator (smartphone).

Here first how registration flow should work between roaming authenticator & RP?
Second, What should be the mechanism used to connect b/w client on desktop/laptop and roaming authenticator (smartphone).


Regards,
Chuni
.  

Tim Cappalli

unread,
May 28, 2024, 1:52:51 PMMay 28
to FIDO Dev (fido-dev), chunilal kukreja
This is a standard WebAuthn flow using a passkey. 

>> Here first how registration flow should work between roaming authenticator & RP?

The registration flow is explained in detail in the WebAuthn specification: https://w3c.github.io/webauthn/#sctn-sample-registration

>> Second, What should be the mechanism used to connect b/w client on desktop/laptop and roaming authenticator (smartphone).

FIDO Cross-Device Authentication is used for registering and/or using a passkey on another device. There is nothing special that an RP needs to do.
Reply all
Reply to author
Forward
0 new messages