FIDO AppID and Facet Specification

[Sachit Sharma]

Hey Community Members,

I am trying to use AppID and Facet ID implementations to connect my website and android application(present on the same device)(basically exploring whether it is possible to share a Private Public keypair that is stored on the same android device in TPM).
I am following the following document, but it is 4 years old. Is this the latest version? 

https://fidoalliance.org/specs/fido-v2.0-id-20180227/fido-appid-and-facets-v2.0-id-20180227.html#determining-the-facetid-of-a-calling-application

Also, any resources for a demo that make use of this?

--

Regards,

Sachit Sharma

[Ackermann Yuriy]

Hey Sachit.

If you are trying to use AppID for Android app, there is a assetlinks for that: https://developers.google.com/identity/fido/android/native-apps#interoperability_with_your_website

For everything else WebAuthn API moved to the RPID/Origin https://w3c.github.io/webauthn/#relying-party-identifier

Yuriy Ackermann

FIDO, Identity, Standards

skype: ackermann.yuriy

github: @herrjemand

twitter: @herrjemand

medium: @herrjemand

--
You received this message because you are subscribed to the Google Groups "FIDO Dev (fido-dev)" group.
To unsubscribe from this group and stop receiving emails from it, send an email to fido-dev+u...@fidoalliance.org.
To view this discussion on the web visit https://groups.google.com/a/fidoalliance.org/d/msgid/fido-dev/CALqDgP_2rrkAtn2%2BFT0fuWt%2BnznrZJ8yoVfVNrtLgiJm960bmQ%40mail.gmail.com.

[Sachit Sharma]

Hey Ackermann,
Thanks for your reply.
Can you please throw some more light on the Asset link, does it help me to share my Keypair to the authentication ceremony? or does it only redirects the user from the website to the android application?

--

Regards ,

Sachit Sharma

+91-8587030313

[John Bradley]

The asset link allows your app to use the RPID from the web in its WebAuthn API call.   The WebAuthn platform in Android checks the asset link to validate that only your apps can use your RPID URI.