Authentication method primacy

[Richard Maher]

I have seen the WebAuthn demos such as https://www.youtube.com/watch?v=SWocv4BhCNg with implicit UI constraints/flows but don't understand the Authentication Method Hierarchy.

IMHO *all* authenticators should be equal but the straight jacket I'm seeing is:-

Platform Authenticator = number 1

Phone etc = Number 2

USB Dongle = Number 3

The arbitray UI seems to impose the pecking order that doesn't exists in the spec?

[Tim Cappalli]

Hi there.

I assume you are referring to the modal in Edge and Chrome?

This UI is only temporary. Once a platform supports CTAP 2.2 natively, it will go away on that platform and you'll see the native UI.

Regarding the order, this and other UI elements are rarely ever specified in standards.

Tim

---

From: 'Richard Maher' via FIDO Dev (fido-dev) <fido...@fidoalliance.org>
Sent: Friday, August 5, 2022 3:01:13 AM
To: FIDO Dev (fido-dev) <fido...@fidoalliance.org>
Subject: [FIDO-DEV] Authentication method primacy

 

--
You received this message because you are subscribed to the Google Groups "FIDO Dev (fido-dev)" group.
To unsubscribe from this group and stop receiving emails from it, send an email to fido-dev+u...@fidoalliance.org.
To view this discussion on the web visit https://groups.google.com/a/fidoalliance.org/d/msgid/fido-dev/6d0750b2-9115-40fd-b3d9-f6af122e3a23n%40fidoalliance.org.