Reputation: 1080
Using CTAP2 to authenticate to an app on the same device
CTAP2 allows apps on mobile phones to act as roaming authenticators. An app may implement the protocol over one or more of the supported transports.
However, there are use cases where the web or native app being accessed would be run on the same mobile device as the roaming authenticator. Can this use case be supported by CTAP2?
PS: Why is there no ctap or ctap2 tag? I used 'fido' as a proxy.
Upvotes: 1
Views: 449
Answers (1)
Reputation: 1662
However, there are use cases where the web or native app being accessed would be run on the same mobile device as the roaming authenticator. Can this use case be supported by CTAP2?
CTAP defines a protocol that is used between devices. For apps to provide credentials on the same device, the OS of that device would need to support them plugging into the standard APIs.
We (Google) said yesterday, “Please stay tuned for more updates from us in the next year as we introduce changes to Android, enabling third party credential managers to support passkeys for their users.” But I believe that's the most that any of the platforms have said on this point so far.
Upvotes: 1
Related Questions
- How to distinguish FIDO2 devices
- FIDO2 seamless sign-in across devices - Passkeys
- Can multiple Android Applications(same device) share same key-pair for Passwordless Authentication using FIDO 2 Protocol?
- Mobile Authenticator using CTAP2 specifications
- How to use FIDO credentials with WebAuthn on mobile
- FIDO2 compatibility with U2F/CTAP1
- Incomplete Implementation of CTAP2 (FIDO2) protocol in Chrome?
- 2FA / Apple, using Authy
- OAuth 2 Password Grant with First Party Mobile and Single Page Apps
- Multi user app login with Touch ID on iPad