Overview
| Proposer | Niels van Dijk, SURF |
|---|---|
| Area | SECURITY & PRIVACY |
| Type of work | DEVELOPMENT RESEARCH |
| Output | PROTOTYPE REPORT |
| History |
Original proposal
Passkey promises a new way for passwordless login. The login however does not contain an attestation. How does this new protocol work, how does it integrate into our current ecosystem and how would this work in combination with new paradigms like wallets?
More background
- https://www.corbado.com/blog/passkeys-single-sign-on-sso
- https://www.helpnetsecurity.com/2013/09/12/saml-20-two-factor-sso-without-usernames-or-passwords/
- http://blog.xot.nl/2022/09/12/passkeys-and-eidas-the-future-of-authentication/index.html
- https://blog.chromium.org/2022/12/introducing-passkeys-in-chrome.html
Description of the activity
- Build at least one technical prototype implementation for using passkey login in a tbd IdP product (e.g. SimpleSAMLphp or Shibboleth IdP)
- Run at least 1 workshop to discuss Passkey in the context of identity federation with community of NREN and IdP participants
- Discuss feasability, investigate and possibly test/implement combining passkey with SSI wallets
- Discuss feasability of a federarated passkey service.
Ownership & Utilisation
The following parties will use the results of this activity:
| T&I Service | |
|---|---|
| R&E Community | |
| External Party |
Results & Deliverables
The following results were created and delivered: