Even though passwordless authentication to online accounts offers greater security and protection from attack, passwords remain prevalent. Passwordless authentication adoption is impacted by the slow adoption of external hardware keys required to generate the security keys within the authentication protocol. We have developed a virtual WebAuthn authenticator in order to provide an extensible open source platform for understanding the associated standards of WebAuthn and CTAP2. Our authenticator provides secure software authentication for devices that do not have access to a physical hardware interface. Our authenticator also provides an alternative to an external physical hardware key and supports the use of a trusted platform module (TPM) on a device to generate the security keys within a WebAuthn protocol.
翻译:尽管对在线账户的无密码认证提供了更大的安全性和免受攻击的保护,但密码仍然很普遍。无密码认证的采用受到在认证协议中生成安全钥匙所需的外部硬件钥匙缓慢采用的影响。我们开发了一个虚拟的网络授权认证程序,以提供一个可扩展的开放源平台,用于理解WebAuthen和CTAP2的相关标准。我们的认证程序为无法访问物理硬件界面的设备提供了安全的软件认证。我们的认证程序还为外部硬件钥匙提供了替代选项,并支持在设备上使用一个可信赖的平台模块(TPM)来生成WebAuthn协议中的安全钥匙。