Skip to content

Commit

Permalink
Merge pull request #1931 from w3c/nsteele-authntctr-def-1743
Browse files Browse the repository at this point in the history
Update Authenticator Definition
  • Loading branch information
nicksteele authored Aug 16, 2023
2 parents 409421b + aff97c2 commit 84ef4ac
Showing 1 changed file with 5 additions and 3 deletions.
8 changes: 5 additions & 3 deletions index.bs
Original file line number Diff line number Diff line change
Expand Up @@ -952,11 +952,13 @@ The key words "MUST", "MUST NOT", "REQUIRED", "SHALL", "SHALL NOT", "SHOULD", "S
: <dfn>[WAA]</dfn>
:: A cryptographic entity, existing in hardware or software, that can [=registration|register=] a user with a given [=[RP]=]
and later [=Authentication Assertion|assert possession=] of the registered [=public key credential=], and optionally
[=user verification|verify the user=], when requested by the [=[RP]=]. [=Authenticators=] can report information
regarding their [=authenticator types|type=] and security characteristics via [=attestation=] during [=registration=].
[=user verification|verify the user=] to the [=[RP]=]. [=Authenticators=] can report information
regarding their [=authenticator types|type=] and security characteristics via [=attestation=] during [=registration=]
and [=assertion=].

A [=[WAA]=] could be a [=roaming authenticator=], a dedicated hardware subsystem integrated into the [=client device=],
or a software component of the [=client=] or [=client device=].
or a software component of the [=client=] or [=client device=]. A [=[WAA]=] is not necessarily confined to operating in
a local context, and can generate or store a [=credential key pair=] in a server outside of [=client-side=] hardware.

In general, an [=authenticator=] is assumed to have only one user.
If multiple natural persons share access to an [=authenticator=],
Expand Down

0 comments on commit 84ef4ac

Please sign in to comment.