!!! Overview
[{$pagename}] is an [Authenticator] for [FIDO protocols]


Newer [{$pagename}]s support the [CTAP2] [WebAuthn Authenticator]

[{$pagename}] __requires__ a [FIDO Client].

[{$pagename}] __requires__ a [local device] such as a [Mobile Device] or a [U2F device]

[{$pagename}] allows a user to [Authenticate] to a [FIDO] enabled [Relying Party] using their different [Authentication Methods]

[{$pagename}] needs to be able to:
* generate [Cryptographic Key] pairs securely 
* store [Cryptographic Key]
* [MUST] include a [cryptographic] engine that includes a [Cryptographically secure pseudorandom number generator] that can operate on the stored keys. 

[{$pagename}]s generate [Public Key]/[Private Key] pairs for each [website] with which they communicate. 

Key generation places a high load on computing resources, especially in the case of general purpose CPUs. 

[Smart Card] technology is purpose-built to perform key pair generation quickly, with low power consumption. Because [Smart Card] technology uses a [Secure Element], key pair generation is performed securely and is efficiently protected, even from advanced attacks. [Smart Card] technology protects [Private Keys] in hardware with interaction restricted to a limited set of commands and responses.

The [FIDO Standards] define a common [API] at the [FIDO Client] for the local [authentication] method that the user exercises. 

!! [{$pagename}] Attestation and [Metadata]
[{$pagename}] modules may register various [Metadata] properties of the [{$pagename}] a [mds.fidoaliance.org|https://mds.fidoalliance.org/ |target='_blank'] which is a [JWT] that describes various aspects of the particular [{$pagename}]

!! More Information
There might be more information for this subject on one of the following:
[{ReferringPagesPlugin before='*' after='\n' }]
----
* [#1] - [FIDO® Suite|https://www.aware.com/biometrics/fido-suite/|target='_blank'] - based on information obtained 2017-04-04