- From: =JeffH via GitHub <sysbot+gh@w3.org>
- Date: Wed, 05 Apr 2017 15:33:10 +0000
- To: public-webauthn@w3.org
+1 to @jyasskin in particular: > One problem with only specifying the suffix is that it omits the requirement that challenge be a nonce. Agreed. and another one is that the challenge be generated on the RP server-side. -- GitHub Notification of comment by equalsJeffH Please view or discuss this issue at https://github.com/w3c/webauthn/issues/88#issuecomment-291900074 using your GitHub account
Received on Wednesday, 5 April 2017 15:33:16 UTC