Upgrade to Pro
— share decks privately, control downloads, hide ads and more …
Speaker Deck
Features
Speaker Deck
PRO
Sign in
Sign up for free
Search
Search
#fidcon WebAuthn, Next Stage - #idcon vol.29
Search
Nov Matake
October 12, 2022
Technology
0
2.1k
#fidcon WebAuthn, Next Stage - #idcon vol.29
Nov Matake
October 12, 2022
Tweet
Share
More Decks by Nov Matake
See All by Nov Matake
Passkey Autofill に賭けるマネーフォワード ID - Money Forward Tech Day 2024
nov
1
280
OpenID Summit 2024 - Translation WG
nov
0
360
OpenID Summit 2024 - Panel : Celebrating Ten Years of OpenID Connect
nov
0
400
What’s Passkey @ AXIES 2023
nov
0
2.1k
NIST SP800-63C (rev.4) Federation & Assertions - OpenID BizDay #16
nov
0
50
Safari (ITP) & Chrome (SameSite=Lax as default) が Federation に与える影響 - OpenID TechNight vol.17
nov
0
11
Sign in with Apple ~ diff from OIDC / OAuth 2.0 & characteristic identifiers design ~ - #idcon vol.27
nov
0
12
OAuth 2.0 & OpenID Connect 基礎 @ OpenID Meetup Fukuoka
nov
2
600
IIW #13 report at idcon #10
nov
2
69
Other Decks in Technology
See All in Technology
あなたの知らないiOS開発の世界
recruitengineers
PRO
3
190
なにもしてないのにNew Relicのデータ転送量が増えていたときに確認したこと
tk3fftk
2
230
Fediverse Discovery Providers overview
andypiper
0
170
どこよりも遅めなWinActor Ver.7.5.0 新機能紹介
tamai_63
0
210
PDF Viewer作成の今までとこれから
hunachi
0
480
「自動テストのプラクティスを効果的に学ぶためのカードゲーム」 ( #sqip2024 )
teyamagu
PRO
2
190
事前準備が肝!AI活用のための業務改革
layerx
PRO
1
400
2ヶ月かかるDBアップグレード検証を最大2週間に短縮した自作Go製CLIツール「Platinum」を紹介する / Introducing Go CLI tool "Platinum" for shortened DB upgrade validation
vtryo
2
120
やってやろうじゃないかメカアジャイル! / Let's do it, mechanical agile!
psj59129
1
700
プロダクトエンジニアを支えるための開発生産性向上施策
tsukakei
0
150
LLVM/ASMを使った有限体の高速実装
herumi
0
120
Agile in Automotive Industry, puzzles and lights.
hiranabe
3
1.4k
Featured
See All Featured
Let's Do A Bunch of Simple Stuff to Make Websites Faster
chriscoyier
502
140k
Web Components: a chance to create the future
zenorocha
309
42k
The Art of Programming - Codeland 2020
erikaheidi
48
13k
Building a Modern Day E-commerce SEO Strategy
aleyda
36
6.8k
Templates, Plugins, & Blocks: Oh My! Creating the theme that thinks of everything
marktimemedia
26
2k
Helping Users Find Their Own Way: Creating Modern Search Experiences
danielanewman
29
2.2k
ParisWeb 2013: Learning to Love: Crash Course in Emotional UX Design
dotmariusz
109
6.9k
How to train your dragon (web standard)
notwaldorf
85
5.6k
Art, The Web, and Tiny UX
lynnandtonic
294
20k
Practical Orchestrator
shlominoach
185
10k
Large-scale JavaScript Application Architecture
addyosmani
508
110k
The Success of Rails: Ensuring Growth for the Next 100 Years
eileencodes
41
6.5k
Transcript
JEDPOWPM GJEDPO8FC"VUIO /FYU4UBHF Nov Matake
ϚωʔϑΥϫʔυࣾһʹͳͬͨͷͰձ ͕͑ΔΑ͏ʹͳͬͨΑʂࠓه೦ʹ KeynoteςϯϓϨϚωʔϑΥϫʔυ༷ Ͱʂ͜ΕࣗݾհςϯϓϨͩΑʂ ࣗݾհ ΠϯλϏϡʔͳͲʹ ͝ར༻͍ͩ͘͞
iOS, iPadOS, macOS ্Ͱͷ Passkey ࣮ʹ͍ͭͯ
Passkey on Apple Platforms iOS 16+ ͜ͷςϯϓϨͷ͜ͷཝʹ I have no
idea ԿΛೖΕͨΒ͍͍͔ what I should put here Α͘Θ͔ͬͯͳ͍Α in this template iPadOS 16+ macOS 13+
https://developer.apple.com/videos/play/wwdc2021/10106/
https://developer.apple.com/videos/play/wwdc2021/10106/
https://developer.apple.com/videos/play/wwdc2021/10106/
after 1+ year of Technology Preview…
https://developer.apple.com/videos/play/wwdc2021/10106/
https://developer.apple.com/videos/play/wwdc2021/10106/ WebAuthn Autofill
Passkey + Autofill = new WebAuthn UX
FIDO needs better UX than better security
Passkey Sync Demo
Autofill Demo
Problems Resolved
None
→ → →
None
Problems Remaining
https://github.com/w3c/webauthn/issues/1779 Display name (email address?) changes
None
...?
https://github.com/w3c/webauthn/issues/1793 Re-authentication with specifically allowed credentials
None
None
Sign-up w/ Autofill … not discussed yet?
None
None
...?
None
Are you happy with syncing Passkeys among multiple Windows /
Android…? and… ChromeOS?
Problems Arised
WebAuthn doesn’t work on office mac Unavailable on iCloud-KeyChain-disabled machines
(e.g., developer’s company Mac)
Conclusion
Passkey is awesome only for Apple freaks WebAuthn Autofill is
the game changer
Next game changer will be… Credential syncing between different platforms
POST /.well-known/webauthn-credentails like “POST /.well-known/change-password”
[APPENDIX] If WebAuthn UX is getting closer and closer to
Password Managers…
https://developer.apple.com/videos/play/wwdc2021/10106/