Upgrade to Pro
— share decks privately, control downloads, hide ads and more …
Speaker Deck
Features
Speaker Deck
PRO
Sign in
Sign up for free
Search
Search
#fidcon WebAuthn, Next Stage - #idcon vol.29
Search
Nov Matake
October 12, 2022
Technology
0
2.3k
#fidcon WebAuthn, Next Stage - #idcon vol.29
Nov Matake
October 12, 2022
Tweet
Share
More Decks by Nov Matake
See All by Nov Matake
Passkey Autofill に賭けるマネーフォワード ID - Money Forward Tech Day 2024
nov
2
3.5k
OpenID Summit 2024 - Translation WG
nov
0
490
OpenID Summit 2024 - Panel : Celebrating Ten Years of OpenID Connect
nov
0
530
What’s Passkey @ AXIES 2023
nov
0
2.3k
NIST SP800-63C (rev.4) Federation & Assertions - OpenID BizDay #16
nov
0
98
Safari (ITP) & Chrome (SameSite=Lax as default) が Federation に与える影響 - OpenID TechNight vol.17
nov
0
54
Sign in with Apple ~ diff from OIDC / OAuth 2.0 & characteristic identifiers design ~ - #idcon vol.27
nov
0
21
OAuth 2.0 & OpenID Connect 基礎 @ OpenID Meetup Fukuoka
nov
2
660
IIW #13 report at idcon #10
nov
2
70
Other Decks in Technology
See All in Technology
Kiroでインフラ要件定義~テスト を実施してみた
nagisa53
3
360
LLM 機能を支える Langfuse / ClickHouse のサーバレス化
yuu26
9
2.3k
はじめての転職講座/The Guide of First Career Change
kwappa
4
4k
20250807_Kiroと私の反省会
riz3f7
0
230
Telemetry APIから学ぶGoogle Cloud ObservabilityとOpenTelemetryの現在 / getting-started-telemetry-api-with-google-cloud
k6s4i53rx
0
150
夏休みWebアプリパフォーマンス相談室/web-app-performance-on-radio
hachi_eiji
0
190
AIに頼りすぎない新人育成術
cuebic9bic
3
310
ZOZOTOWNの大規模マーケティングメール配信を支えるアーキテクチャ
zozotech
PRO
0
350
✨敗北解法コレクション✨〜Expertだった頃に足りなかった知識と技術〜
nanachi
1
720
AI時代の大規模データ活用とセキュリティ戦略
ken5scal
0
140
Amazon GuardDuty での脅威検出:脅威検出の実例から学ぶ
kintotechdev
0
110
【新卒研修資料】数理最適化 / Mathematical Optimization
brainpadpr
27
13k
Featured
See All Featured
Product Roadmaps are Hard
iamctodd
PRO
54
11k
Six Lessons from altMBA
skipperchong
28
3.9k
The Power of CSS Pseudo Elements
geoffreycrofte
77
5.9k
Docker and Python
trallard
45
3.5k
The Cult of Friendly URLs
andyhume
79
6.5k
Building a Scalable Design System with Sketch
lauravandoore
462
33k
Building Flexible Design Systems
yeseniaperezcruz
328
39k
Documentation Writing (for coders)
carmenintech
73
5k
Let's Do A Bunch of Simple Stuff to Make Websites Faster
chriscoyier
507
140k
Chrome DevTools: State of the Union 2024 - Debugging React & Beyond
addyosmani
7
800
How To Stay Up To Date on Web Technology
chriscoyier
790
250k
Code Review Best Practice
trishagee
69
19k
Transcript
JEDPOWPM GJEDPO8FC"VUIO /FYU4UBHF Nov Matake
ϚωʔϑΥϫʔυࣾһʹͳͬͨͷͰձ ͕͑ΔΑ͏ʹͳͬͨΑʂࠓه೦ʹ KeynoteςϯϓϨϚωʔϑΥϫʔυ༷ Ͱʂ͜ΕࣗݾհςϯϓϨͩΑʂ ࣗݾհ ΠϯλϏϡʔͳͲʹ ͝ར༻͍ͩ͘͞
iOS, iPadOS, macOS ্Ͱͷ Passkey ࣮ʹ͍ͭͯ
Passkey on Apple Platforms iOS 16+ ͜ͷςϯϓϨͷ͜ͷཝʹ I have no
idea ԿΛೖΕͨΒ͍͍͔ what I should put here Α͘Θ͔ͬͯͳ͍Α in this template iPadOS 16+ macOS 13+
https://developer.apple.com/videos/play/wwdc2021/10106/
https://developer.apple.com/videos/play/wwdc2021/10106/
https://developer.apple.com/videos/play/wwdc2021/10106/
after 1+ year of Technology Preview…
https://developer.apple.com/videos/play/wwdc2021/10106/
https://developer.apple.com/videos/play/wwdc2021/10106/ WebAuthn Autofill
Passkey + Autofill = new WebAuthn UX
FIDO needs better UX than better security
Passkey Sync Demo
Autofill Demo
Problems Resolved
None
→ → →
None
Problems Remaining
https://github.com/w3c/webauthn/issues/1779 Display name (email address?) changes
None
...?
https://github.com/w3c/webauthn/issues/1793 Re-authentication with specifically allowed credentials
None
None
Sign-up w/ Autofill … not discussed yet?
None
None
...?
None
Are you happy with syncing Passkeys among multiple Windows /
Android…? and… ChromeOS?
Problems Arised
WebAuthn doesn’t work on office mac Unavailable on iCloud-KeyChain-disabled machines
(e.g., developer’s company Mac)
Conclusion
Passkey is awesome only for Apple freaks WebAuthn Autofill is
the game changer
Next game changer will be… Credential syncing between different platforms
POST /.well-known/webauthn-credentails like “POST /.well-known/change-password”
[APPENDIX] If WebAuthn UX is getting closer and closer to
Password Managers…
https://developer.apple.com/videos/play/wwdc2021/10106/