Microsoft
MicrosoftHey Deleted - I drew that diagram exactly as you commented the first time - with Windows Hello in the platform authenticator box. But both the Windows Hello team and my standards team convinced me it wasn't the right way to convey things. The actual physical authenticators are only ever available through the platform, and in fact platform authenticators are only ever a WebAuthn concept, not a CTAP2 concept. It is really up to the platform to decide how those authenticators are made available, they are not really standards-based participants, so I think the next rev of the diagram would have them embedded completely in the platform rather than adjacent in any way to the WebAuthn APIs. Do you think that would help?
Thanks for the thoughts - it helps a lot to know what resonates and what doesn't.
Cheers,
Pam