Uploaded byOkta-Inc
PPTX, PDF4,412 views

Webauthn Authentication

The document outlines the WebAuthn authentication process which involves: 1. The relying party server sending a challenge to the browser. 2. The browser passing the challenge to an authenticator which signs it and returns an assertion with credentials. 3. The browser returning the signed assertion to the relying party server. 4. The relying party server verifying the signature to authenticate the user.

Embed presentation

Downloaded 30 times
WebAuthn Authentication
Authentication Browser Authentication 1 Relying Party Javascript Client WebAuthn API Username Name Web Server/ Relying Party Server Authenticator
Server Challenge - Get Credentials Browser Authentication 1 2 Relying Party Javascript Client WebAuthn API Challenge Credential Id Challenge Username Name Authenticator Web Server/ Relying Party Server
Server Challenge - Get Credentials Browser Relying Party Javascript Client WebAuthn API Challenge Credential Id RP Id Challenge + Domain 3 Web Server/ Relying Party Server 2 1 Challenge Credential Id Challenge Authenticator Username Name Authentication
Authenticator Browser 3 Relying Party Javascript Client WebAuthn API 4 Challenge + Domain User Verification & Create Signed Assertion Assertion Challenge Credential Id RP Id Web Server/ Relying Party Server Authenticator 2 1 Challenge Credential Id Challenge Username Name Authentication
Response to the Server Browser 3 Relying Party Javascript Client WebAuthn API 4 User Verification & Create Signed Assertion Assertion Web Server/ Relying Party Server Authenticator 2 1 Challenge Credential Id Challenge 5 Authenticator Assertion Challenge+R P ID (clientDataHa sh)User Handle Authenticato r Data Signature Username Name Authentication Challenge Credential Id RP Id Challenge + Domain
Response to the Server Browser 3 Relying Party Javascript Client WebAuthn API 4 User Verification & Create Signed Assertion Web Server/ Relying Party Server Authenticator 2 1 Challenge Credential Id Challenge 5 Authenticator Assertion Challenge+R P ID (clientDataHa sh)User Handle Authenticato r Data Signature 6 Challenge+R P ID (clientDataHa sh)User Handle Authenticato r Data Signature Challenge Response Username Name Authentication Challenge Credential Id RP Id Challenge + Domain Assertion
Response to the Server Browser 3 Relying Party Javascript Client WebAuthn API 4 User Verification & Create Signed Assertion Web Server/ Relying Party Server Authenticator 2 1 Challenge Credential Id Challenge 5 Authenticator Assertion 6 Challenge+R P ID (clientDataHa sh)User Handle Authenticato r Data Signature Challenge Response 7 Verify Signature Username Name Authentication Challenge Credential Id RP Id Challenge + Domain Assertion Challenge+R P ID (clientDataHa sh)User Handle Authenticato r Data Signature

More Related Content

PDF
Web Authentication API
byFIDO Alliance
 
PPTX
FIDO Alliance: Welcome and FIDO Update.pptx
byFIDO Alliance
 
PPTX
FIDO Authentication: Unphishable MFA for All
byFIDO Alliance
 
PDF
Securing a Web App with Passwordless Web Authentication
byFIDO Alliance
 
PDF
Extending Active Directory to Box for Seamless IT Management
byOkta-Inc
 
PDF
FIDO and the Future of User Authentication
byFIDO Alliance
 
PDF
FIDO 생체인증 기술 개발 사례
byLee Ji Eun
 
PPTX
Introduction to FIDO: A New Model for Authentication
byFIDO Alliance
 
Web Authentication API
byFIDO Alliance
 
FIDO Alliance: Welcome and FIDO Update.pptx
byFIDO Alliance
 
FIDO Authentication: Unphishable MFA for All
byFIDO Alliance
 
Securing a Web App with Passwordless Web Authentication
byFIDO Alliance
 
Extending Active Directory to Box for Seamless IT Management
byOkta-Inc
 
FIDO and the Future of User Authentication
byFIDO Alliance
 
FIDO 생체인증 기술 개발 사례
byLee Ji Eun
 
Introduction to FIDO: A New Model for Authentication
byFIDO Alliance
 

What's hot

PPTX
Introduction to FIDO Authentication and Passkeys.pptx
byFIDO Alliance
 
PDF
FIDO2 Specifications Overview
byFIDO Alliance
 
PPTX
FIDO Masterclass
byFIDO Alliance
 
PPTX
Cybersecurity Training
byWindstoneHealth
 
PDF
PaloAlto Enterprise Security Solution
byPrime Infoserv
 
PDF
2019 FIDO Tokyo Seminar - LINE PayへのFIDO2実装
byFIDO Alliance
 
PDF
WebAuthn and Security Keys
byFIDO Alliance
 
PDF
FIDO Authentication Technical Overview
byFIDO Alliance
 
PDF
Passwordless Authentication
byEnterprise Management Associates
 
PPTX
Fido Technical Overview
byFIDO Alliance
 
PDF
Web Authn & Security Keys: Unlocking the Key to Authentication
byFIDO Alliance
 
PDF
Extended Detection and Response (XDR) An Overhyped Product Category With Ulti...
byRaffael Marty
 
PDF
Google Accel Report - SaaS India, Global SMB Market, $50B in 2025 #SaaSinIndi...
byAccel Partners India
 
PDF
FIDO Specifications Overview: UAF & U2F
byFIDO Alliance
 
PPTX
Adopting A Zero-Trust Model. Google Did It, Can You?
byZscaler
 
PPTX
What is Zero Trust
byOkta-Inc
 
PPTX
Endpoint Protection
bySophos
 
PDF
Google & FIDO Authentication
byFIDO Alliance
 
PDF
Integrating FIDO & Federation Protocols
byFIDO Alliance
 
PDF
IBM Security Identity & Access Manager
byIBM Sverige
 
Introduction to FIDO Authentication and Passkeys.pptx
byFIDO Alliance
 
FIDO2 Specifications Overview
byFIDO Alliance
 
FIDO Masterclass
byFIDO Alliance
 
Cybersecurity Training
byWindstoneHealth
 
PaloAlto Enterprise Security Solution
byPrime Infoserv
 
2019 FIDO Tokyo Seminar - LINE PayへのFIDO2実装
byFIDO Alliance
 
WebAuthn and Security Keys
byFIDO Alliance
 
FIDO Authentication Technical Overview
byFIDO Alliance
 
Passwordless Authentication
byEnterprise Management Associates
 
Fido Technical Overview
byFIDO Alliance
 
Web Authn & Security Keys: Unlocking the Key to Authentication
byFIDO Alliance
 
Extended Detection and Response (XDR) An Overhyped Product Category With Ulti...
byRaffael Marty
 
Google Accel Report - SaaS India, Global SMB Market, $50B in 2025 #SaaSinIndi...
byAccel Partners India
 
FIDO Specifications Overview: UAF & U2F
byFIDO Alliance
 
Adopting A Zero-Trust Model. Google Did It, Can You?
byZscaler
 
What is Zero Trust
byOkta-Inc
 
Endpoint Protection
bySophos
 
Google & FIDO Authentication
byFIDO Alliance
 
Integrating FIDO & Federation Protocols
byFIDO Alliance
 
IBM Security Identity & Access Manager
byIBM Sverige
 

Similar to Webauthn Authentication

PPTX
Getting Started With WebAuthn
byFIDO Alliance
 
PDF
FIDO2 Specifications Overview
byFIDO Alliance
 
PPTX
New FIDO Specifications Overview -FIDO Alliance -Tokyo Seminar -Nadalin
byFIDO Alliance
 
PDF
1000 ways to die in mobile oauth
byPriyanka Aash
 
PDF
2019 - Tech Talk DC - Token-based security for web applications using OAuth2 ...
byVladimir Bychkov
 
PDF
Protecting web APIs with OAuth 2.0
byVladimir Dzhuvinov
 
PDF
DevConf.CZ 2020 @ Brno, Czech Republic : WebAuthn support for keycloak
byHitachi, Ltd. OSS Solution Center.
 
PPTX
Webauthn Registration
byOkta-Inc
 
PPTX
Token Authentication for Java Applications
byStormpath
 
PDF
AllTheTalks.Online 2020: "Basics of OAuth 2.0 and OpenID Connect"
byAndreas Falk
 
PDF
Securing Web Applications with Token Authentication
byStormpath
 
PPTX
Apidays New York 2024 - Passkeys: Developing APIs to enable passwordless auth...
byapidays
 
PPTX
OpenID Connect 1.0 Explained
byEugene Siow
 
PDF
Full stack security
byDPC Consulting Ltd
 
PDF
The History and Status of Web Crypto API (2012)
byChanny Yun
 
PDF
Web Authentication: a Future Without Passwords?
byNatasha Rooney
 
PDF
#iiw 13th report at #idcon 10th
byNov Matake
 
Getting Started With WebAuthn
byFIDO Alliance
 
FIDO2 Specifications Overview
byFIDO Alliance
 
New FIDO Specifications Overview -FIDO Alliance -Tokyo Seminar -Nadalin
byFIDO Alliance
 
1000 ways to die in mobile oauth
byPriyanka Aash
 
2019 - Tech Talk DC - Token-based security for web applications using OAuth2 ...
byVladimir Bychkov
 
Protecting web APIs with OAuth 2.0
byVladimir Dzhuvinov
 
DevConf.CZ 2020 @ Brno, Czech Republic : WebAuthn support for keycloak
byHitachi, Ltd. OSS Solution Center.
 
Webauthn Registration
byOkta-Inc
 
Token Authentication for Java Applications
byStormpath
 
AllTheTalks.Online 2020: "Basics of OAuth 2.0 and OpenID Connect"
byAndreas Falk
 
Securing Web Applications with Token Authentication
byStormpath
 
Apidays New York 2024 - Passkeys: Developing APIs to enable passwordless auth...
byapidays
 
OpenID Connect 1.0 Explained
byEugene Siow
 
Full stack security
byDPC Consulting Ltd
 
The History and Status of Web Crypto API (2012)
byChanny Yun
 
Web Authentication: a Future Without Passwords?
byNatasha Rooney
 
#iiw 13th report at #idcon 10th
byNov Matake
 

More from Okta-Inc

PPTX
Identity's Role in a Zero Trust Strategy
byOkta-Inc
 
PDF
5 Top Enterprises Making IAM a Priority
byOkta-Inc
 
PDF
Avoiding the Hidden Costs of Active Directory Federation Services (AD FS)
byOkta-Inc
 
PDF
Company and Market Overview
byOkta-Inc
 
PDF
Pre-built, Secure Identity Layer for Consumer Websites, B2B Portals and SaaS ...
byOkta-Inc
 
PDF
Okta Digital Enterprise Report
byOkta-Inc
 
Identity's Role in a Zero Trust Strategy
byOkta-Inc
 
5 Top Enterprises Making IAM a Priority
byOkta-Inc
 
Avoiding the Hidden Costs of Active Directory Federation Services (AD FS)
byOkta-Inc
 
Company and Market Overview
byOkta-Inc
 
Pre-built, Secure Identity Layer for Consumer Websites, B2B Portals and SaaS ...
byOkta-Inc
 
Okta Digital Enterprise Report
byOkta-Inc
 

Recently uploaded

PPTX
Week 7 Introduction to HTML PowerPoint Notes.pptx
bylesandawelgens
 
PDF
Cloud-Based Underwriting Software for Insurance
byInsurance Tech Services
 
PDF
One Agent to Rule Them All - The Fellowship of AI Agents
byIvo Andreev
 
PPTX
SAP FICO Training Agenda for new learners
bysasidhar unnagiri
 
PPTX
Code Assessment Tools .pptx
byCodexpro
 
PPTX
SNG460-CNG489_Week8_17-21Nov25_Chp8-OdtuClass.pptx
byberayseray382
 
PPTX
Privacy Preserving Detection of Sensitive Data Exposure (1).pptx
byNikitaMandhan4
 
PDF
From Experiment to Enterprise: Scaling AI Coding Assistants Across Engineerin...
byMaxim Salnikov
 
PPTX
1_MIL_Introduction_Influence-of-Media-and-Information-on-Communication (1).pptx
byDeltaDomsMamas1
 
PDF
DSD-INT 2025 Latest Developments for HydroMT and wflow - Meshgi
byDeltares
 
PDF
Manual vs Automated Accessibility Testing – What to Choose in 2025.pdf
bykalichargn70th171
 
PDF
Virtual Study Circles Innovative Ways to Collaborate Online.pdf
byExplain Learning
 
PPTX
AI Clinic Management Software for Pulmonology Clinics Bringing Clarity, Contr...
byEasy Clinic
 
PDF
Database Management Systems(DBMS):UNIT-I Introduction to Database(DBMS) BCA S...
byKuvempu University
 
PDF
BCS-FACS Peter Landin Semantics Seminar - Formal Methods: Whence and Whither?
byJonathan Bowen
 
PDF
DSD-INT 2025 Integrating Nature-Based Solutions into Hydrological Models A Li...
byDeltares
 
PDF
DSD-INT 2025 Stochastic flood event generation using wflow and a diffusion do...
byDeltares
 
PDF
DSD-INT 2025 Introduction to Hydrology Suite - Slootjes
byDeltares
 
PDF
DSD-INT 2025 Managing low flows in the International Meuse Basin with Nature-...
byDeltares
 
PDF
DSD-INT 2025 Hydrological Modelling in Society Assumptions, Impacts, and Appl...
byDeltares
 
Week 7 Introduction to HTML PowerPoint Notes.pptx
bylesandawelgens
 
Cloud-Based Underwriting Software for Insurance
byInsurance Tech Services
 
One Agent to Rule Them All - The Fellowship of AI Agents
byIvo Andreev
 
SAP FICO Training Agenda for new learners
bysasidhar unnagiri
 
Code Assessment Tools .pptx
byCodexpro
 
SNG460-CNG489_Week8_17-21Nov25_Chp8-OdtuClass.pptx
byberayseray382
 
Privacy Preserving Detection of Sensitive Data Exposure (1).pptx
byNikitaMandhan4
 
From Experiment to Enterprise: Scaling AI Coding Assistants Across Engineerin...
byMaxim Salnikov
 
1_MIL_Introduction_Influence-of-Media-and-Information-on-Communication (1).pptx
byDeltaDomsMamas1
 
DSD-INT 2025 Latest Developments for HydroMT and wflow - Meshgi
byDeltares
 
Manual vs Automated Accessibility Testing – What to Choose in 2025.pdf
bykalichargn70th171
 
Virtual Study Circles Innovative Ways to Collaborate Online.pdf
byExplain Learning
 
AI Clinic Management Software for Pulmonology Clinics Bringing Clarity, Contr...
byEasy Clinic
 
Database Management Systems(DBMS):UNIT-I Introduction to Database(DBMS) BCA S...
byKuvempu University
 
BCS-FACS Peter Landin Semantics Seminar - Formal Methods: Whence and Whither?
byJonathan Bowen
 
DSD-INT 2025 Integrating Nature-Based Solutions into Hydrological Models A Li...
byDeltares
 
DSD-INT 2025 Stochastic flood event generation using wflow and a diffusion do...
byDeltares
 
DSD-INT 2025 Introduction to Hydrology Suite - Slootjes
byDeltares
 
DSD-INT 2025 Managing low flows in the International Meuse Basin with Nature-...
byDeltares
 
DSD-INT 2025 Hydrological Modelling in Society Assumptions, Impacts, and Appl...
byDeltares
 

Webauthn Authentication

  • 1.
  • 2.
  • 3.
    Server Challenge -Get Credentials Browser Authentication 1 2 Relying Party Javascript Client WebAuthn API Challenge Credential Id Challenge Username Name Authenticator Web Server/ Relying Party Server
  • 4.
    Server Challenge -Get Credentials Browser Relying Party Javascript Client WebAuthn API Challenge Credential Id RP Id Challenge + Domain 3 Web Server/ Relying Party Server 2 1 Challenge Credential Id Challenge Authenticator Username Name Authentication
  • 5.
    Authenticator Browser 3 Relying Party Javascript Client WebAuthn API 4 Challenge + Domain User Verification& Create Signed Assertion Assertion Challenge Credential Id RP Id Web Server/ Relying Party Server Authenticator 2 1 Challenge Credential Id Challenge Username Name Authentication
  • 6.
    Response to theServer Browser 3 Relying Party Javascript Client WebAuthn API 4 User Verification & Create Signed Assertion Assertion Web Server/ Relying Party Server Authenticator 2 1 Challenge Credential Id Challenge 5 Authenticator Assertion Challenge+R P ID (clientDataHa sh)User Handle Authenticato r Data Signature Username Name Authentication Challenge Credential Id RP Id Challenge + Domain
  • 7.
    Response to theServer Browser 3 Relying Party Javascript Client WebAuthn API 4 User Verification & Create Signed Assertion Web Server/ Relying Party Server Authenticator 2 1 Challenge Credential Id Challenge 5 Authenticator Assertion Challenge+R P ID (clientDataHa sh)User Handle Authenticato r Data Signature 6 Challenge+R P ID (clientDataHa sh)User Handle Authenticato r Data Signature Challenge Response Username Name Authentication Challenge Credential Id RP Id Challenge + Domain Assertion
  • 8.
    Response to theServer Browser 3 Relying Party Javascript Client WebAuthn API 4 User Verification & Create Signed Assertion Web Server/ Relying Party Server Authenticator 2 1 Challenge Credential Id Challenge 5 Authenticator Assertion 6 Challenge+R P ID (clientDataHa sh)User Handle Authenticato r Data Signature Challenge Response 7 Verify Signature Username Name Authentication Challenge Credential Id RP Id Challenge + Domain Assertion Challenge+R P ID (clientDataHa sh)User Handle Authenticato r Data Signature