Link to this headingWebAuthn
WebAuthn API
A Tour of WebAuthn
Link to this headingIdentity
It’s now easier to prove age and identity with Google Wallet
Link to this headingFeatures
Detect the WebAuthn Features for your browser
Link to this headingRelated Origin Requests
- Allows a Web Server to authenticate a user with a YubiKey
- This is generalized and can use other authentication mechanisms like bio-metrics or Face Identification
User Presence vs User Verification
Link to this headingPassKeys
You can just use a folder to store the keys and IDs. But hardware-backed passkeys use an attestation of the manufacturer of the hardware device. This is done by a certificate signed by the manufacturer.
filekey uses the PDF extention to generate a AES Key to encrypt files that the secret is stored in the Passkey
Link to this headingInternals
Passkeys Authenticator AAGUID Explorer
Link to this headingExtensions
PRF: Pseudo-Random Function
largeBlob: Store large data from the website