Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Would be good to document the differences between the various key types #13

Open
iustin opened this issue Dec 18, 2022 · 0 comments
Open

Would be good to document the differences between the various key types #13

iustin opened this issue Dec 18, 2022 · 0 comments
Assignees
@carloscabanero

Comments

@iustin
Copy link

iustin commented Dec 18, 2022

Hi,

I’m trying to implement an iOS workflow, but I’m not sure I understand the differences between SE, WebAuthn/device and WebAuthn/Security key types. From my limited understanding:

  • SE keys are device-bound, non-exportable, but cannot require confirmation
  • WebAuthn/device are iCloud-account bound (so exportable between devices, I think), require biometrics authentication, and can implement a two-factor auth via “save on another device”
  • WebAuthn/security key are bound to the security key, non-exportable, and require presence check (but not biometrics)

Is this roughly correct? I’m happy to improve docs if I have the right understanding.
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@carloscabanero carloscabanero

Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@carloscabanero @iustin