Re: [webauthn] explain challenge's security importance and use in both registration and authentication operations from Angelo Liao via GitHub on 2017-04-18 (public-webauthn@w3.org from April 2017)

From: Angelo Liao via GitHub <sysbot+gh@w3.org>
Date: Tue, 18 Apr 2017 17:28:14 +0000
To: public-webauthn@w3.org
Message-ID: <issue_comment.created-294918983-1492536492-sysbot+gh@w3.org>

@equalsJeffH @mikewest Are you proposing we change the challenge to be a DOMString? @vijaybh @leshi I remembered the reason why challenge is base64url encoding is partially because of CTAP, correct?

-- 
GitHub Notification of comment by AngeloKai
Please view or discuss this issue at https://github.com/w3c/webauthn/issues/404#issuecomment-294918983 using your GitHub account

Received on Tuesday, 18 April 2017 17:28:22 UTC