FIDO (Fast Identity Online) authenticator, system and method based on TEE (Trusted Execution Environment) and wireless confirmation

The invention discloses a FIDO (Fast Identity Online) authenticator, a system and a method based on a TEE (Trusted Execution Environment) and wireless confirmation. The authenticator comprises a main operating element which is realized in the TEE in the form of TA (Trusted Application), a wireless terminal used for inputting user confirmation information, and a wireless adapter used for receiving the user confirmation information in an intelligent terminal. The system comprises the FIDO authenticator, an authentication client running in an REE (Rich Execution Environment), a service client, a service server and an authentication server. The method comprises the following steps: running the main operating element in the TEE; and receiving a binding/authentication/transaction request and so on transmitted by the authentication client by the main operating element. The FIDO authenticator, the system and the method based on the TEE and wireless confirmation provided by the invention use an authentication method realized based on an FIDO protocol to improve the user experience, thus a process of inputting a user name and a password can be left out; besides, a TEE technology is used in a process of realizing the FIDO authenticator to improve the safety. The invention can be widely applied to various intelligent terminal authentication systems.