deepblue/windows-itpro-docs
1
0
Fork 0
mirror of https://github.com/MicrosoftDocs/windows-itpro-docs.git synced 2025-05-20 09:17:25 +00:00
Code Issues Actions 3 Packages Projects Releases Wiki Activity

Adding Webauthn API page

Browse Source
This commit is contained in:
Aabha Thipsay 2019-02-14 15:24:59 -08:00
parent 3174e4918e
commit ff53715740
1 changed files with 33 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

33
windows/security/identity-protection/hello-for-business/WebAuthnAPIs.md Normal file
View File

@ -0,0 +1,33 @@
---
title: WebAuthn APIs
description: Enabling password-less authentication for your sites and apps
ms.prod: w10
ms.mktglfcycl: deploy
ms.sitesec: library
ms.pagetype: security, mobile
author: aabhathipsay
ms.author: aathipsa
ms.localizationpriority: medium
ms.date: 02/14/2019
---
# WebAuthn APIs for password-less authentication
[!Warning]
> Some information relates to pre-released product that may change before it is commercially released. Microsoft makes no warranties, express or implied, with respect to the information provided here.
### Passwords leave your customers vulnerable. With the new WebAuthn APIs, your sites and apps can leverage password-less authentication.
Microsoft has long been a proponent to do away with passwords. Today were excited to introduce you to the latest Windows 10 (version 1903) W3C/FIDO2 WebAuthn APIs! These APIs allow Microsoft developer partners and the developer community to leverage Windows Hello and FIDO2 security keys as a password-less authentication mechanism on Windows 10 devices.
#### What does this mean?
This opens opportunities for website developers or relying parties (RPs), who are dependent on the availability of authenticators and browsers to build password-less authentication for their sites. They can now leverage [Windows Hello](https://aka.ms/whfb) or [FIDO2 Security Keys](https://docs.microsoft.com/en-us/windows/security/identity-protection/hello-for-business/microsoft-compatible-security-key) as a password-less multi-factor credential for authentication to their web sites.
Users of these sites can use any browser that supports WebAuthn Windows 10 APIs for password-less authentication and will have a familiar and consistent experience on Windows 10, no matter which browser they use to get to the RPs site!
<br> <br>
The native Windows 10 WebAuthn APIs are currently supported by Microsoft Edge on Windows 10 1809 or later and newer versions of other browsers.
<br> <br>
Developers of FIDO2 authentication keys should use the new Windows 10 APIs, to enable these scenarios in a consistent way for users. Moreover, this enables the use off all the transports available per FIDO2 specifications USB, NFC and BLE without having to deal with the interaction and management overhead. This also implies browsers or apps on Windows 10 will no longer have direct access to USB for FIDO related messaging.
#### Where can developers learn more?
The new Windows 10 APIs are documented on [GitHub](https://github.com/Microsoft/webauthn)