This article is within the scope of WikiProject Computing, a collaborative effort to improve the coverage of
computers,
computing, and
information technology on Wikipedia. If you would like to participate, please visit the project page, where you can join
the discussion and see a list of open tasks.ComputingWikipedia:WikiProject ComputingTemplate:WikiProject ComputingComputing articles
This article is within the scope of WikiProject Internet, a collaborative effort to improve the coverage of the
Internet on Wikipedia. If you would like to participate, please visit the project page, where you can join
the discussion and see a list of open tasks.InternetWikipedia:WikiProject InternetTemplate:WikiProject InternetInternet articles
WebAuthn is designed so that it can work with a range of public-key authenticator mechanisms, from pure software implementations to those using specialized hardware environments, such as a processor's trusted execution environment, a Trusted Platform Module, or an external hardware token accessed via USB, Bluetooth Low Energy, or near-field communications (NFC).
The "such as" list does not adequately declare itself on the range from "pure software" to "specialized hardware".
Basic content added. It would be nice if the terms linked to the W3C WebAuthn glossary but I don't know how to do that. May have to link to the glossary itself (and let the reader navigate further).
Tom Scavo (
talk)
16:18, 6 March 2019 (UTC)reply
Okay, I've reached a stopping point (have at it). A few notes:
Concrete examples of software authenticator and platform authenticator are needed. Web citations are required in each case.
If you know of an authoritative citation that justifies the last paragraph in the
WebAuthn#Overview section, please add it. Published articles only, please. We don't want to start a flame war :-)
Tom Scavo (
talk)
16:29, 6 March 2019 (UTC)reply
Biometrics
I believe the last paragraph is accurate. I was tempted to write "users are uniformly apprehensive of biometrics" (or something like that) but that would be even more contentious, I know. Clearly the last paragraph needs at least one authoritative citation (see above).
Tom Scavo (
talk)
18:11, 6 March 2019 (UTC)reply
I added a couple of citations re biometrics (both from Duo Security) but I still think a published reference is needed. Surely someone has already done this research.
Tom Scavo (
talk)
17:02, 8 March 2019 (UTC)reply
Support
IMO, the
WebAuthn#Support section should cover browsers and relying parties only, no authenticators. Alternatively, the latter could be listed on the forthcoming
Draft:Authenticator page instead. I added a table to that page along with a bit of content to illustrate. Comments?
Tom Scavo (
talk)
17:31, 8 March 2019 (UTC)reply