Product Documentation

StrongKey FIDO Server (SKFS) has the ability to download and store the FIDO authenticator metadata statements published by FIDO Alliance Metadata Service. This is governed by the SKFS configuration property "skfs.cfg.property.mds.enabled" that determines if these statements are downloaded or not. If this property is enabled, the SKFS has a job that runs in the background and tries to refresh the metadata statements once a day and only does this if the MDS has been updated. If there has been no update to MDS, the SKFS will continue using the existing statements from memory. There are additional properties that define how the SKFS will download and treat the metadata statements.

 

SKFS provides two options for downloading the MDS. Setting property "skfs.cfg.property.mds.fidoalliance.loadmethod.url" will ensure that the MDS is downloaded from FIDO alliance website. If "skfs.cfg.property.mds.fidoalliance.loadmethod.local" is set, the MDS is loaded from a file on the file system.

 

Regardless of which mechanism is used, if enabled the SKFS will try to look for a file in either the local file system or FIDO alliance website once a day and will refresh it if it has been updated. If a individual/company has selected the "local" option, it becomes their responsibility to update this file as and when required.

NOTE: Learn more about managing MDS properties here.