Research Article
Security Analysis and Bypass User Authentication Bound to Device of Windows Hello in the Wild
Figure 1
FIDO2 works with WebAuthn and CTAP. Through WebAuthn, an internal authenticator in the platform communicates with the FIDO server to authenticate a user. Optionally, the user activates an external authenticator with CTAP using other security devices.