Overview#
Authenticator needs some context.Authenticator may refer to NIST.SP.800-63B or to the FIDO Authenticator.
To LDAPWiki this is all just very confusing as an Authenticator is nothing different than a claim (i.e. Credential) that is typically tied to a specific Authentication Method during the Credential Enrollment process by the Identity Proofing process.
Typically in Password-based Authentication, there are two Entities:
The Authentication Method determines how Validation of these two claims is performed and this process is AuthenticationNIST.SP.800-63B#
Authenticator is defined in NIST.SP.800-63B as something that the claimant possesses and controls (typically a cryptographic module or password) that is used to authenticate the claimant’s Digital Identity which is what most people call a CredentialIn previous editions of NIST.SP.800-63 versions, this was referred to as a token.
More Information#
There might be more information for this subject on one of the following:- AP_REQ
- Authentication
- Authentication Protocol
- Authentication intent
- Authenticator App
- Authenticator Assurance Levels
- Authorization Gesture
- CTAP2
- CTAP2 Platform Host
- Client Device
- Client To Authenticator Protocol
- Credential Service Provider
- Extensible Authentication Protocol
- FIDO Alliance
- FIDO Authenticator
- FIDO2
- Fast IDentity Online
- Google Authenticator
- Identity Assurance Level
- Impersonation-resistant
- Kerberos
- Kerberos Cryptosystem Negotiation Extension
- Knowledge-Based Authentication
- Level Of Assurance
- MS-CHAP
- NIST.SP.800-63B
- Openid-configuration
- Password Validator
- Plenum Byzantine Fault Tolerant Protocol
- Risk-Based Authentication
- Strength of Function for Authenticators - Biometrics
- TGS_REQ
- Trust Elevation
- U2F
- U2F device
- Universal Second Factor
- Virtual Authenticator
- Web Authentication API
- WebAuthN
- WebAuthn Attestation
- WebAuthn Authentication
- WebAuthn Authenticator
- WebAuthn Authenticator Model
- WebAuthn Client
- WebAuthn Client Device
- WebAuthn Registration
