W3C home > Mailing lists > Public > public-webauthn@w3.org > August 2019

Re: [webauthn] How do I use a smart phone as an authenticator when the web application is running on a laptop/desktop? (#954)

From: mehakzahra1 via GitHub <sysbot+gh@w3.org>
Date: Tue, 06 Aug 2019 15:56:02 +0000
To: public-webauthn@w3.org
Message-ID: <issue_comment.created-518731930-1565106960-sysbot+gh@w3.org>
 I am looking for the use case/scenario for setting up a smartphone as an authenticator using CTAP2 specifications. I am looking for the use case in which a user set up the browser to interact with their smartphone the same way it would when using Yubikey or another similar security key. I have read all the documentation related to it but unfortunately what I always get an article using Yubikeys / other USB devices as the authenticator. I am looking forward to some interaction where the mobile phone serves a roaming authenticator. By having a look at the documentation and CTAP specification conceptually I know this can be done by having some connection between the phone and the host via  • Bluetooth • NFC • USB After the establishment of connection the mobile authenticator could then implement the CTAP2 protocol so that the browser considers it as roaming authenticator. I am also looking forward to seeing the authentication process using some BLE enabled devices. I have already tried log-in using the yubikey security key on the following website:

But I want to achieve the same flow login-mechanism using Bluetooth enable Thetis BLE key or mobile itself. Any insights would be very helpful. I am also looking forward to people working on this particular use case to have a mutual discussion.

GitHub Notification of comment by mehakzahra1
Please view or discuss this issue at https://github.com/w3c/webauthn/issues/954#issuecomment-518731930 using your GitHub account
Received on Tuesday, 6 August 2019 15:56:09 UTC

This archive was generated by hypermail 2.4.0 : Friday, 17 January 2020 18:59:06 UTC