WebAuthn

A web standard developed by the World Wide Web Consortium (W3C) for enhancing online authentication and security. It can be used a second factor for Multi-Factor Authentication (MFA).

WebAuthn introduces a new form of authentication called "passwordless authentication" or "strong authentication," where users can log in to websites and applications without needing to remember and enter passwords. Instead, WebAuthn relies on public key cryptography to authenticate users securely. This technology aims to improve both the security and user experience of online authentication.

However, in our context of privacyIDEA it is mainly used as a second factor of authentication. Devices and software using WebAuthn to provide authentication are for example physical security keychains like YubiKeys, Windows Hello by Microsoft or TouchID/FaceID by Apple.