11/01/2017 W3C Web Authentication WG Meeting Agenda
11/09/2017 W3C Web Authentication WG Meeting Agenda
11/15/2017 W3C Web Authentication WG Meeting Agenda
11/22/2017 W3C Web Authentication WG Meeting Agenda
11/22/2017 W3C WebAuthn Meeting
11/29/2017 W3C Web Authentication WG Meeting Agenda
[w3c/webauthn]
- GitHub (Thursday, 30 November)
- GitHub (Monday, 27 November)
- GitHub (Friday, 24 November)
- GitHub (Wednesday, 22 November)
- GitHub (Wednesday, 22 November)
- GitHub (Tuesday, 21 November)
- GitHub (Monday, 20 November)
- GitHub (Monday, 20 November)
- GitHub (Thursday, 16 November)
- GitHub (Thursday, 16 November)
- GitHub (Friday, 10 November)
- GitHub (Thursday, 9 November)
- GitHub (Thursday, 9 November)
- GitHub (Thursday, 9 November)
- GitHub (Thursday, 9 November)
- GitHub (Friday, 3 November)
- GitHub (Friday, 3 November)
[w3c/webauthn] 038032: Remove duplicated UV step from authenticatorMakeCr...
[w3c/webauthn] 0418f3: Sensible limits for RP and User Entity fields. (#6...
[w3c/webauthn] 0557e1: fix up MakePublicKeyCredentialOptions.attestation ...
- GitHub (Saturday, 18 November)
[w3c/webauthn] 05f4b2: Use Infra list terms in authenticatorGetAssertion
- GitHub (Wednesday, 15 November)
[w3c/webauthn] 07f2bc: Built by Travis-CI: b8656455896b3eb888653e464786cf...
[w3c/webauthn] 0e5f5a: Built by Travis-CI: 3985dd18d2d6c1d54dae21c78d2553...
- GitHub (Thursday, 16 November)
[w3c/webauthn] 0e9392: Modify SafetyNet descriptive text (#643)
[w3c/webauthn] 0eeb1b: Built by Travis-CI: 931b46eece69f5d780ce4b317e3a37...
[w3c/webauthn] 1194ce: Updated authnr def (#678)
[w3c/webauthn] 14c273: fix proper subset tweak (#542)
[w3c/webauthn] 14d08c: Fix broken variable member references
[w3c/webauthn] 167730: Built by Travis-CI: 7153b55e8cd8e1bad5b5f57ee1eb7d...
[w3c/webauthn] 1bd925: Added a third option
- GitHub (Saturday, 11 November)
[w3c/webauthn] 1c1a11: Add UV parameter to getAssertion operation
[w3c/webauthn] 1dd484: adding references
[w3c/webauthn] 1df795: fix copy and paste error
[w3c/webauthn] 2124bf: Built by Travis-CI: e09e0c3d05803018eb6f8841a16a9e...
[w3c/webauthn] 21f588: Fix #404 - Add a Security Consideration for Crypto...
[w3c/webauthn] 25a35a: changing name of method
[w3c/webauthn] 25bede: Built by Travis-CI: cffd22fddf9aec528e30a03548b551...
[w3c/webauthn] 261c1f: Built by Travis-CI: d468a75b6a723867d24add0bd01bd7...
[w3c/webauthn] 271106: PR 636: rename several items and remove prescripti...
[w3c/webauthn] 272a66: Sensible limits for RP and User Entity fields.
- GitHub (Wednesday, 1 November)
[w3c/webauthn] 2969b3: Address editorial review comments
[w3c/webauthn] 2f0b13: fix #700 & #701: add same origin with ancestors pa...
- GitHub (Thursday, 30 November)
[w3c/webauthn] 31ddb2: Fix uvm 368 (#675)
[w3c/webauthn] 3985dd: Add RSASSA-PKCS1-v1_5 w/ SHA1 for TPM attestations...
- GitHub (Thursday, 16 November)
[w3c/webauthn] 3bfbfd: Built by Travis-CI: 45541f918a8c43fe2d5c5a7ef2eb4a...
[w3c/webauthn] 3d352c: Prompt for credential selection only if more than ...
- GitHub (Wednesday, 15 November)
[w3c/webauthn] 40875f: use the registered ext ids in examples
[w3c/webauthn] 416732: Resolve #698 - Rename requireUserVerification (#69...
[w3c/webauthn] 46d6c5: more consistency: add Get name to section 5.1.4
- GitHub (Wednesday, 15 November)
[w3c/webauthn] 46e76b: typo
- GitHub (Saturday, 11 November)
[w3c/webauthn] 474d02: Clarify semantics of isPlatformAuthenticatorAvaila...
[w3c/webauthn] 4a8f02: Revert "Make authenticatorMakeCredential always us...
[w3c/webauthn] 4d774d: Rename userVerification to userVerificationRequire...
[w3c/webauthn] 59683f: Added explanation...
[w3c/webauthn] 5b98d1: Fix initial part of step 18 of credentials.get()
- GitHub (Wednesday, 22 November)
- GitHub (Tuesday, 21 November)
- GitHub (Monday, 13 November)
[w3c/webauthn] 5f4f3e: Fix attestation types supported for each format
[w3c/webauthn] 62f79e: fix cut'n'paste error, thx emlun!
- GitHub (Wednesday, 29 November)
[w3c/webauthn] 63564a: replaced authenticatio key by credential private k...
[w3c/webauthn] 641eed: Nit: "set" -> "pair"
[w3c/webauthn] 67a1a3: updated the definition of authenticator
[w3c/webauthn] 705e3d: Fix references to |authenticatorSelection| members...
[w3c/webauthn] 71e282: Built by Travis-CI: cd591289dfaa8bde2ef729321c5fe9...
[w3c/webauthn] 727633: Built by Travis-CI: c647b7099dfc78dcab15998783971e...
[w3c/webauthn] 77820d: Remove extraneous </code> end tag
[w3c/webauthn] 7a134d: Change requireUserVerification default to "wanted"
- GitHub (Wednesday, 8 November)
[w3c/webauthn] 7a7f5d: actually improve #254, and fix #661
[w3c/webauthn] 7d8fde: add ref to Note wrt leveraging Feature Policy spec...
- GitHub (Wednesday, 29 November)
[w3c/webauthn] 7f1068: Incorporating feedback and trying to get travis/bi...
[w3c/webauthn] 7f6279: Built by Travis-CI: 416732ec746d3d2efde237dbc3a072...
[w3c/webauthn] 7fe7dc: Fix issue #685
[w3c/webauthn] 802883: need to define 'blinding'
- GitHub (Saturday, 18 November)
[w3c/webauthn] 81fdc9: build on Adding a choice for RP to express prefere...
- GitHub (Wednesday, 22 November)
[w3c/webauthn] 825cce: Making "direct" description less ambiguous.
[w3c/webauthn] 930f86: Built by Travis-CI: 66c2ec950171b2d47d32ca5025d681...
[w3c/webauthn] 931b46: Make create() and get() abortable (#544)
- GitHub (Thursday, 9 November)
- GitHub (Wednesday, 8 November)
[w3c/webauthn] 93f791: Built by Travis-CI: 31ddb22449a62bcb05b901234fb29a...
[w3c/webauthn] 96655e: Address review comment by @kpaulh
[w3c/webauthn] 9a1c34: Give authData and attestationData fields formal na...
- GitHub (Saturday, 11 November)
[w3c/webauthn] 9a3e24: Make UP and UV independent again
- GitHub (Wednesday, 8 November)
[w3c/webauthn] 9ccb17: typos
- GitHub (Saturday, 11 November)
[w3c/webauthn] 9f5df0: Make PublicKeyCredentialEntity hierarchy required ...
[w3c/webauthn] a2c99a: Fix list numbering accidentally broken by fc2c7b8
[w3c/webauthn] a44746: Trying to make travis checks happy
- GitHub (Wednesday, 1 November)
[w3c/webauthn] a4c0d6: Built by Travis-CI: 2f0b13e0afa13081e2cf62f09267e1...
- GitHub (Thursday, 30 November)
[w3c/webauthn] a50006: Built by Travis-CI: cc943646ae5e63c69907578bd5a2c2...
[w3c/webauthn] a51550: Move UserVerificationRequirement subsection to las...
[w3c/webauthn] a7db15: Built by Travis-CI: 81fdc9a301f02e2324945cf9cbe052...
- GitHub (Wednesday, 22 November)
[w3c/webauthn] a9639c: Revert "Rename userVerification to userVerificatio...
[w3c/webauthn] aa2e87: adding client processing rules...
- GitHub (Saturday, 11 November)
[w3c/webauthn] abf8af: Resolve #292 - Clarify that only one operation is ...
[w3c/webauthn] b2c141: Incorporating Feedback
[w3c/webauthn] b59da7: Fix a reference to the wrong requireUserVerificati...
[w3c/webauthn] b68982: Make authenticatorMakeCredential always use UV if ...
[w3c/webauthn] b973de: Built by Travis-CI: 0418f3eeb054b57bc541bbf57f6899...
[w3c/webauthn] ba242b: Don't always require UV for first factor authentic...
[w3c/webauthn] c02e25: Resolve #698 - Rename requireUserVerification
[w3c/webauthn] c1c0f7: fix another sloppiness instance
- GitHub (Wednesday, 29 November)
[w3c/webauthn] c3df94: address jcjones' comments, thx!
- GitHub (Wednesday, 29 November)
[w3c/webauthn] c42583: remove comments from <pre> blocks
[w3c/webauthn] c647b7: Define Public Key Credential Source and Credential...
[w3c/webauthn] c6f07a: Remove redundant "if present" from requireUserVeri...
[w3c/webauthn] c955f0: fix #700 add sameOriginWithAncestors parameter to ...
[w3c/webauthn] c986e9: adapt commit 825cce7 language
[w3c/webauthn] ca6a49: Built by Travis-CI: 625bd7acf014bb1664d2b8852883d8...
[w3c/webauthn] cac111: Un-hardcode step numbers in RP operations
[w3c/webauthn] cc9436: fix comments in pre blocks and other linking error...
[w3c/webauthn] ce46ef: Merge branch 'master' into jeffh-balfanz-patch-4
[w3c/webauthn] ce4fe9: Built by Travis-CI: 0e93926d7c77afd07e75002880f15b...
[w3c/webauthn] d468a7: fix #254: credman alignment: update #getAssertion ...
[w3c/webauthn] d879b7: Only exclude CredIDs matching the RPID
[w3c/webauthn] ddde3d: Built by Travis-CI: 1194ce5b3204240561e0e075342d3e...
[w3c/webauthn] df7dc0: Clarify that the privacy consideration is a timing...
[w3c/webauthn] ea30a3: Fix plural
- GitHub (Wednesday, 15 November)
[w3c/webauthn] ef015f: Improve formulation of UP/UV requirement in authen...
[w3c/webauthn] f17cea: address jyasskin comments, thx!
[w3c/webauthn] f728b9: make BS happy - no comments in <pre> blocks, defin...
- GitHub (Saturday, 18 November)
[w3c/webauthn] fa787d: Adding a type field to CollectedClientData
[w3c/webauthn] fc2c7b: Format |userVerification| decisions as switches
[w3c/webauthn] fda862: adding RP processing rules.
[webauthn] #createCredential alg: "if options.authenticatorSelection is present..." may be incorrect
[webauthn] #getAssertion alg needs to pass authenticator selection requirements to authenticatorGetAssertion operation
- =JeffH via GitHub (Wednesday, 8 November)
- Emil Lundberg via GitHub (Saturday, 4 November)
- =JeffH via GitHub (Friday, 3 November)
- Akshay Kumar via GitHub (Friday, 3 November)
- Emil Lundberg via GitHub (Friday, 3 November)
- Akshay Kumar via GitHub (Friday, 3 November)
- Emil Lundberg via GitHub (Friday, 3 November)
- Akshay Kumar via GitHub (Friday, 3 November)
- =JeffH via GitHub (Thursday, 2 November)
- Akshay Kumar via GitHub (Wednesday, 1 November)
[webauthn] .store() is confusing
[webauthn] 5.6. Authentication Extensions name confusing
[webauthn] [[Create]] and [[DiscoverFromExternalSource]] references have inconsistent parameter lists
[webauthn] Add CDDL to every extension
[webauthn] Add getAuthenticatorInfo to the Authenticator Model section
[webauthn] Add RSASSA-PKCS1-v1_5 w/ SHA1 for TPM attestations and correct TPM signing/verification text
[webauthn] add sameOriginWithAncestors parameter to internal methods
[webauthn] Adding a choice for RP to express preferences for attestation types
- balfanz via GitHub (Wednesday, 22 November)
- Anthony Nadalin via GitHub (Tuesday, 21 November)
- Akshay Kumar via GitHub (Tuesday, 21 November)
- Anthony Nadalin via GitHub (Tuesday, 21 November)
- Christiaan Brand via GitHub (Tuesday, 21 November)
- Rolf Lindemann via GitHub (Monday, 20 November)
- =JeffH via GitHub (Monday, 20 November)
- =JeffH via GitHub (Friday, 17 November)
- balfanz via GitHub (Friday, 17 November)
- Anthony Nadalin via GitHub (Friday, 17 November)
- Adam Langley via GitHub (Friday, 17 November)
- Akshay Kumar via GitHub (Friday, 17 November)
- Adam Langley via GitHub (Friday, 17 November)
- Adam Langley via GitHub (Thursday, 16 November)
- Akshay Kumar via GitHub (Thursday, 16 November)
- Anthony Nadalin via GitHub (Thursday, 16 November)
- Anthony Nadalin via GitHub (Thursday, 16 November)
- Rolf Lindemann via GitHub (Thursday, 16 November)
- Alex Radutskiy via GitHub (Wednesday, 15 November)
- Christiaan Brand via GitHub (Wednesday, 15 November)
- =JeffH via GitHub (Tuesday, 14 November)
- Akshay Kumar via GitHub (Monday, 13 November)
- =JeffH via GitHub (Sunday, 12 November)
- =JeffH via GitHub (Sunday, 12 November)
- Emil Lundberg via GitHub (Friday, 10 November)
- =JeffH via GitHub (Friday, 10 November)
- Akshay Kumar via GitHub (Friday, 10 November)
- Anthony Nadalin via GitHub (Friday, 10 November)
- Akshay Kumar via GitHub (Friday, 10 November)
- J.C. Jones via GitHub (Friday, 10 November)
- =JeffH via GitHub (Friday, 10 November)
- J.C. Jones via GitHub (Friday, 10 November)
- Rolf Lindemann via GitHub (Friday, 10 November)
- Rolf Lindemann via GitHub (Friday, 10 November)
[webauthn] Allow hot-plugged authenticators?
[webauthn] Ask for tests for normative changes in CONTRIBUTING.md
[webauthn] attachment is only explicitly used in create()
[webauthn] Authenticator selection extension - should makeCredential fail if no specified authenticator can be found?
[webauthn] Authenticator session not possible for BLE
[webauthn] authenticatorMakeCredential operation credential filtering
[webauthn] Bug: getAssertion accidentally calls authenticatorGetAssertion in first factor mode
[webauthn] build on Adding a choice for RP to express preferences for attestation types
- Emil Lundberg via GitHub (Wednesday, 22 November)
- =JeffH via GitHub (Wednesday, 22 November)
- Emil Lundberg via GitHub (Wednesday, 22 November)
- Adam Langley via GitHub (Wednesday, 22 November)
- Emil Lundberg via GitHub (Wednesday, 22 November)
- =JeffH via GitHub (Wednesday, 22 November)
- Adam Langley via GitHub (Wednesday, 22 November)
- =JeffH via GitHub (Wednesday, 22 November)
- Rolf Lindemann via GitHub (Wednesday, 22 November)
- Emil Lundberg via GitHub (Wednesday, 22 November)
- gmandyam via GitHub (Tuesday, 21 November)
- Anthony Nadalin via GitHub (Tuesday, 21 November)
- Anthony Nadalin via GitHub (Tuesday, 21 November)
- Christiaan Brand via GitHub (Tuesday, 21 November)
- =JeffH via GitHub (Monday, 20 November)
- Anthony Nadalin via GitHub (Monday, 20 November)
- =JeffH via GitHub (Sunday, 19 November)
- Adam Langley via GitHub (Saturday, 18 November)
- =JeffH via GitHub (Saturday, 18 November)
- =JeffH via GitHub (Friday, 17 November)
- Adam Langley via GitHub (Friday, 17 November)
- Akshay Kumar via GitHub (Friday, 17 November)
- Akshay Kumar via GitHub (Friday, 17 November)
- =JeffH via GitHub (Friday, 17 November)
- Adam Langley via GitHub (Friday, 17 November)
[webauthn] clarify isPlatformAuthenticatorAvailable's semantics
[webauthn] Closed Pull Request: Adding a choice for RP to express preferences for attestation types
[webauthn] CollectedClientData should include a type marker
[webauthn] Credential CBOR
[webauthn] credential id privacy
[webauthn] Crypto algorithm agility: e.g., Specify the set of hash algorithms UAs can select between.
[webauthn] CTAP/U2F doesn't status indicating the user cancelled the operation
[webauthn] define "blinding"
[webauthn] Define Public Key Credential Source and Credential ID.
[webauthn] Define sensible limits for User and RP Entity to be stored on Authenticator as part of create credential
[webauthn] define what to do if both normalizedAlgorithm and cryptoParameters are empty
[webauthn] Eliminate duplicate terminology
[webauthn] explain challenge's security importance and use in both registration and authentication operations
[webauthn] Extensions need to define how their parameters convert to/from CBOR
[webauthn] fix #254: credman alignment: update #getAssertion section a la PR #498
[webauthn] Fix #404 - Add a Security Consideration for Cryptographic Challenges
[webauthn] Fix #587: Make PublicKeyCredentialEntity members required in IDL
[webauthn] Fix #622: Clarify PublicKeyCredentialEntity name descriptions
[webauthn] Fix #644: Add UV parameter to getAssertion
- =JeffH via GitHub (Monday, 20 November)
- Anthony Nadalin via GitHub (Monday, 20 November)
- Emil Lundberg via GitHub (Friday, 17 November)
- Akshay Kumar via GitHub (Friday, 17 November)
- Christiaan Brand via GitHub (Friday, 17 November)
- J.C. Jones via GitHub (Thursday, 16 November)
- Emil Lundberg via GitHub (Thursday, 16 November)
- Akshay Kumar via GitHub (Thursday, 16 November)
- Emil Lundberg via GitHub (Thursday, 16 November)
- Akshay Kumar via GitHub (Thursday, 16 November)
- J.C. Jones via GitHub (Wednesday, 15 November)
- J.C. Jones via GitHub (Wednesday, 15 November)
- Emil Lundberg via GitHub (Wednesday, 15 November)
- J.C. Jones via GitHub (Wednesday, 15 November)
- Emil Lundberg via GitHub (Wednesday, 15 November)
- =JeffH via GitHub (Wednesday, 15 November)
- Emil Lundberg via GitHub (Tuesday, 14 November)
- =JeffH via GitHub (Tuesday, 14 November)
- Emil Lundberg via GitHub (Friday, 10 November)
- =JeffH via GitHub (Friday, 10 November)
- =JeffH via GitHub (Thursday, 9 November)
- Anthony Nadalin via GitHub (Thursday, 9 November)
- Emil Lundberg via GitHub (Wednesday, 8 November)
- =JeffH via GitHub (Wednesday, 8 November)
- Emil Lundberg via GitHub (Wednesday, 8 November)
- Emil Lundberg via GitHub (Tuesday, 7 November)
- Ki-Eun Shin via GitHub (Tuesday, 7 November)
- Emil Lundberg via GitHub (Tuesday, 7 November)
- Ki-Eun Shin via GitHub (Tuesday, 7 November)
- Emil Lundberg via GitHub (Monday, 6 November)
- Emil Lundberg via GitHub (Monday, 6 November)
[webauthn] Fix #668: Recommend RPs to verify UP and UV flags
[webauthn] fix #700 & #701: add same origin with ancestors param
[webauthn] Fix issue #692
[webauthn] further details for authenticatorCancel operation
[webauthn] Internationalization self review
[webauthn] leverage "credential source" term from credential management spec
[webauthn] Make create() and get() abortable
[webauthn] Merged Pull Request: Add RSASSA-PKCS1-v1_5 w/ SHA1 for TPM attestations and correct TPM signing/verification text
[webauthn] Merged Pull Request: Adding a type field to CollectedClientData
[webauthn] Merged Pull Request: build on Adding a choice for RP to express preferences for attestation types
[webauthn] Merged Pull Request: Clarify semantics of isPlatformAuthenticatorAvailable
[webauthn] Merged Pull Request: Define Public Key Credential Source and Credential ID.
[webauthn] Merged Pull Request: fix #254: credman alignment: update #getAssertion section a la PR #498
[webauthn] Merged Pull Request: Fix #404 - Add a Security Consideration for Cryptographic Challenges
[webauthn] Merged Pull Request: Fix #587: Make PublicKeyCredentialEntity members required in IDL
[webauthn] Merged Pull Request: fix #700 & #701: add same origin with ancestors param
[webauthn] Merged Pull Request: fix comments in pre blocks and other linking errors
[webauthn] Merged Pull Request: Fix issue #692
[webauthn] Merged Pull Request: Fix uvm 368
[webauthn] Merged Pull Request: Make create() and get() abortable
[webauthn] Merged Pull Request: New: Adding a choice for RP to express preferences for attestation types
[webauthn] Merged Pull Request: Only exclude CredIDs matching the RPID
[webauthn] Merged Pull Request: replaced authentication key by credential private key. Close #590
[webauthn] Merged Pull Request: Resolve #292 - Clarify that only one operation is permitted per authenticator session
[webauthn] Merged Pull Request: Resolve #698 - Rename requireUserVerification
[webauthn] Merged Pull Request: Sensible limits for RP and User Entity fields.
[webauthn] Merged Pull Request: Tiny nit: "pair of cryptographic keys" instead of "set of cryptographic keys"
[webauthn] Merged Pull Request: Updated authnr def
[webauthn] Merged Pull Request: use the registered ext ids in examples
[webauthn] need to clean up "promise" language
[webauthn] new commits pushed by akshayku
[webauthn] new commits pushed by balfanz
- balfanz via GitHub (Wednesday, 22 November)
- balfanz via GitHub (Saturday, 11 November)
- balfanz via GitHub (Saturday, 11 November)
- balfanz via GitHub (Saturday, 11 November)
- balfanz via GitHub (Saturday, 11 November)
- balfanz via GitHub (Saturday, 11 November)
- balfanz via GitHub (Friday, 10 November)
- balfanz via GitHub (Thursday, 9 November)
- balfanz via GitHub (Thursday, 9 November)
- balfanz via GitHub (Thursday, 9 November)
- balfanz via GitHub (Thursday, 9 November)
- balfanz via GitHub (Thursday, 9 November)
[webauthn] new commits pushed by christiaanbrand
[webauthn] new commits pushed by emlun
- Emil Lundberg via GitHub (Thursday, 30 November)
- Emil Lundberg via GitHub (Sunday, 26 November)
- Emil Lundberg via GitHub (Friday, 24 November)
- Emil Lundberg via GitHub (Friday, 24 November)
- Emil Lundberg via GitHub (Wednesday, 22 November)
- Emil Lundberg via GitHub (Tuesday, 21 November)
- Emil Lundberg via GitHub (Monday, 20 November)
- Emil Lundberg via GitHub (Monday, 20 November)
- Emil Lundberg via GitHub (Wednesday, 15 November)
- Emil Lundberg via GitHub (Wednesday, 15 November)
- Emil Lundberg via GitHub (Wednesday, 15 November)
- Emil Lundberg via GitHub (Tuesday, 14 November)
- Emil Lundberg via GitHub (Tuesday, 14 November)
- Emil Lundberg via GitHub (Monday, 13 November)
- Emil Lundberg via GitHub (Monday, 13 November)
- Emil Lundberg via GitHub (Monday, 13 November)
- Emil Lundberg via GitHub (Friday, 10 November)
- Emil Lundberg via GitHub (Friday, 10 November)
- Emil Lundberg via GitHub (Friday, 10 November)
- Emil Lundberg via GitHub (Friday, 10 November)
- Emil Lundberg via GitHub (Friday, 10 November)
- Emil Lundberg via GitHub (Thursday, 9 November)
- Emil Lundberg via GitHub (Thursday, 9 November)
- Emil Lundberg via GitHub (Thursday, 9 November)
- Emil Lundberg via GitHub (Wednesday, 8 November)
- Emil Lundberg via GitHub (Wednesday, 8 November)
- Emil Lundberg via GitHub (Monday, 6 November)
- Emil Lundberg via GitHub (Monday, 6 November)
- Emil Lundberg via GitHub (Saturday, 4 November)
- Emil Lundberg via GitHub (Friday, 3 November)
[webauthn] new commits pushed by equalsJeffH
- =JeffH via GitHub (Thursday, 30 November)
- =JeffH via GitHub (Wednesday, 29 November)
- =JeffH via GitHub (Wednesday, 29 November)
- =JeffH via GitHub (Wednesday, 29 November)
- =JeffH via GitHub (Tuesday, 28 November)
- =JeffH via GitHub (Wednesday, 22 November)
- =JeffH via GitHub (Tuesday, 21 November)
- =JeffH via GitHub (Tuesday, 21 November)
- =JeffH via GitHub (Tuesday, 21 November)
- =JeffH via GitHub (Monday, 20 November)
- =JeffH via GitHub (Sunday, 19 November)
- =JeffH via GitHub (Sunday, 19 November)
- =JeffH via GitHub (Saturday, 18 November)
- =JeffH via GitHub (Saturday, 18 November)
- =JeffH via GitHub (Saturday, 18 November)
- =JeffH via GitHub (Friday, 17 November)
- =JeffH via GitHub (Thursday, 9 November)
- =JeffH via GitHub (Thursday, 9 November)
- =JeffH via GitHub (Thursday, 9 November)
- =JeffH via GitHub (Wednesday, 8 November)
- =JeffH via GitHub (Wednesday, 8 November)
- =JeffH via GitHub (Friday, 3 November)
[webauthn] new commits pushed by jcjones
[webauthn] new commits pushed by jyasskin
[webauthn] new commits pushed by rlin1
[webauthn] new commits pushed by selfissued
[webauthn] new commits pushed by WebAuthnBot
- WebAuthnBot via GitHub (Thursday, 30 November)
- WebAuthnBot via GitHub (Monday, 27 November)
- WebAuthnBot via GitHub (Wednesday, 22 November)
- WebAuthnBot via GitHub (Tuesday, 21 November)
- WebAuthnBot via GitHub (Thursday, 16 November)
- WebAuthnBot via GitHub (Monday, 13 November)
- WebAuthnBot via GitHub (Monday, 13 November)
- WebAuthnBot via GitHub (Friday, 10 November)
- WebAuthnBot via GitHub (Friday, 10 November)
- WebAuthnBot via GitHub (Thursday, 9 November)
- WebAuthnBot via GitHub (Thursday, 9 November)
- WebAuthnBot via GitHub (Thursday, 9 November)
- WebAuthnBot via GitHub (Thursday, 9 November)
- WebAuthnBot via GitHub (Thursday, 9 November)
- WebAuthnBot via GitHub (Tuesday, 7 November)
- WebAuthnBot via GitHub (Friday, 3 November)
- WebAuthnBot via GitHub (Friday, 3 November)
- WebAuthnBot via GitHub (Thursday, 2 November)
[webauthn] No description regarding representation of credential Id length
[webauthn] Not necessary to pass AuthenticatorSelectionCriteria members to authenticatorMakeCredential()
[webauthn] Nothing required in PublicKeyCredentialEntity
[webauthn] Only exclude CredIDs matching the RPID
[webauthn] overall security considerations section or document
[webauthn] Packed and U2F Attestation Statements' verifications don't differentiate between Basic and Privacy CA Attestation Types
[webauthn] preventSilentAccess() -- what effect does calling it have?
[webauthn] Privacy across Account IDs
[webauthn] Privacy across OS accounts
[webauthn] Privacy concerns with blacklist/whitelist
[webauthn] Pull Request: Add privacy consideration about terminating getAssertion early
[webauthn] Pull Request: Add RSASSA-PKCS1-v1_5 w/ SHA1 for TPM attestations and correct TPM signing/verification text
[webauthn] Pull Request: Adding a type field to CollectedClientData
[webauthn] Pull Request: build on Adding a choice for RP to express preferences for attestation types
[webauthn] Pull Request: CDDL description of location extension
[webauthn] Pull Request: Clarify semantics of isPlatformAuthenticatorAvailable
[webauthn] Pull Request: Fix #404 - Add a Security Consideration for Cryptographic Challenges
[webauthn] Pull Request: Fix #587: Make PublicKeyCredentialEntity members required in IDL
[webauthn] Pull Request: Fix #644: Add UV parameter to getAssertion
[webauthn] Pull Request: fix #700 & #701: add same origin with ancestors param
[webauthn] Pull Request: fix comments in pre blocks and other linking errors
[webauthn] Pull Request: Fix issue #685
[webauthn] Pull Request: Fix uvm 368
[webauthn] Pull Request: New: Adding a choice for RP to express preferences for attestation types
[webauthn] Pull Request: Resolve #292 - Clarify that only one operation is permitted per authenticator session
[webauthn] Pull Request: Resolve #698 - Rename requireUserVerification
[webauthn] Pull Request: Sensible limits for RP and User Entity fields.
[webauthn] Pull Request: Tiny nit: "pair of cryptographic keys" instead of "set of cryptographic keys"
[webauthn] Pull Request: Trust Anchor Selection Criteria
[webauthn] Pull Request: Update session management for BT
[webauthn] Pull Request: Updated authnr def
[webauthn] Pull Request: use the registered ext ids in examples
[webauthn] Recommend RPs to verify UP and UV flags
[webauthn] Refine meaning of PublicKeyCredentialType to be "signature & assertion format (and version thereof)"
[webauthn] Rename AuthenticatorSelectionCriteria.requireUserVerification to userVerification?
[webauthn] Resolve #292 - Clarify that only one operation is permitted per authenticator session
[webauthn] Resolve #698 - Rename requireUserVerification
[webauthn] restrict WebAuthentication API to only top level browsing context
[webauthn] Sensible limits for RP and User Entity fields.
- Akshay Kumar via GitHub (Friday, 3 November)
- =JeffH via GitHub (Thursday, 2 November)
- Akshay Kumar via GitHub (Thursday, 2 November)
- Emil Lundberg via GitHub (Thursday, 2 November)
- =JeffH via GitHub (Thursday, 2 November)
- Jeffrey Yasskin via GitHub (Wednesday, 1 November)
- Emil Lundberg via GitHub (Wednesday, 1 November)
- =JeffH via GitHub (Wednesday, 1 November)
- Emil Lundberg via GitHub (Wednesday, 1 November)
- Akshay Kumar via GitHub (Wednesday, 1 November)
[webauthn] Should the WebAuth API have a cancel() method?
[webauthn] TPM Attestation Statement Format: Missing COSE Key algorithm Identifier and clarification.
[webauthn] undefined terms
[webauthn] Update definition of Authenticator to make it more similar to FIDO's def
[webauthn] Update session management for BT
- Akshay Kumar via GitHub (Wednesday, 29 November)
- =JeffH via GitHub (Wednesday, 29 November)
- Angelo Liao via GitHub (Tuesday, 28 November)
- Anthony Nadalin via GitHub (Monday, 27 November)
- J.C. Jones via GitHub (Monday, 27 November)
- jfontana via GitHub (Monday, 27 November)
- J.C. Jones via GitHub (Monday, 27 November)
- J.C. Jones via GitHub (Monday, 27 November)
- yubicoderek via GitHub (Monday, 27 November)
- =JeffH via GitHub (Monday, 27 November)
- Anthony Nadalin via GitHub (Monday, 27 November)
- Rolf Lindemann via GitHub (Wednesday, 22 November)
- Anthony Nadalin via GitHub (Tuesday, 21 November)
- Anthony Nadalin via GitHub (Monday, 20 November)
[webauthn] Updated authnr def
[webauthn] use the registered ext ids in examples
[webauthn] UVM Extension Editorial Change
[webauthn] various issues with AppId extension
[webauthn] WebAuthn available to Workers? aka "silent authentication"
AW: Follow-up on Privacy CA discussions.
Can anyone dial in?
Closed: [webauthn] #createCredential alg: "if options.authenticatorSelection is present..." may be incorrect
Closed: [webauthn] .store() is confusing
Closed: [webauthn] 5.6. Authentication Extensions name confusing
Closed: [webauthn] [[Create]] and [[DiscoverFromExternalSource]] references have inconsistent parameter lists
Closed: [webauthn] add sameOriginWithAncestors parameter to internal methods
Closed: [webauthn] Allow RPs to choose between "required" and "optional" attestation in credentials.create()
Closed: [webauthn] authenticatorMakeCredential operation credential filtering
Closed: [webauthn] clarify isPlatformAuthenticatorAvailable's semantics
Closed: [webauthn] CollectedClientData should include a type marker
Closed: [webauthn] Credential CBOR
Closed: [webauthn] Define sensible limits for User and RP Entity to be stored on Authenticator as part of create credential
Closed: [webauthn] define what to do if both normalizedAlgorithm and cryptoParameters are empty
Closed: [webauthn] explain challenge's security importance and use in both registration and authentication operations
Closed: [webauthn] fix #254: credman alignment: update #getAssertion section a la PR #498
Closed: [webauthn] imageURL privacy
Closed: [webauthn] impl guidelines for signature counter
Closed: [webauthn] leverage "credential source" term from credential management spec
Closed: [webauthn] Make create() and get() abortable
Closed: [webauthn] need to clean up "promise" language
Closed: [webauthn] Need to remove the term "authentication key" in self attestation description
Closed: [webauthn] Nothing required in PublicKeyCredentialEntity
Closed: [webauthn] Refine meaning of PublicKeyCredentialType to be "signature & assertion format (and version thereof)"
Closed: [webauthn] Rename AuthenticatorSelectionCriteria.requireUserVerification to userVerification?
Closed: [webauthn] revamped [[Create]]() method lacks origin argument
Closed: [webauthn] Should the WebAuth API have a cancel() method?
Closed: [webauthn] There is no "current settings object" in algorithm steps that are executing in parallel
Closed: [webauthn] TPM Attestation Statement Format: Missing COSE Key algorithm Identifier and clarification.
Closed: [webauthn] Update definition of Authenticator to make it more similar to FIDO's def
Closed: [webauthn] What does "which has no other operations in progress" mean in practice?
Comments on WebAuthn spec from W3C APA WG
discussion on payments and authentication?
Fix #587: Make PublicKeyCredentialEntity members required in IDL #669
Fix #644: Add UV parameter to getAssertion #672
Follow-up on Privacy CA discussions.
fyi: Flight rules for git
If you were looking for another reason to boycott Uber ...
Kicking Off the Process for Publishing WD-07 Draft
Merged Pull Request: Fix issue #692
nit: 2017/11/09-webauthn-minutes was F2F meeting, not telecon..
PR #636 Review
PR #672 reviewed
Proposal: Chrome privacy CA
- Anthony Nadalin (Thursday, 16 November)
- Denis Pinkas (Friday, 10 November)
- Anthony Nadalin (Thursday, 9 November)
- Denis Pinkas (Thursday, 9 November)
- Adam Langley (Wednesday, 8 November)
- Denis Pinkas (Wednesday, 8 November)
- Adam Langley (Tuesday, 7 November)
- Denis Pinkas (Tuesday, 7 November)
- Christiaan Brand (Tuesday, 7 November)
- Denis Pinkas (Monday, 6 November)
- Christiaan Brand (Monday, 6 November)
- J.C. Jones (Thursday, 2 November)
- Johan Verrept (Thursday, 2 November)
- Denis Pinkas (Wednesday, 1 November)
- Hodges, Jeff (Wednesday, 1 November)
- Christiaan Brand (Wednesday, 1 November)
- Christiaan Brand (Wednesday, 1 November)
sorry for the repetition...
- =JeffH (Wednesday, 8 November)
spec testing infrastructure: web-platform-tests.org wpt.fyi
- =JeffH (Wednesday, 8 November)
summary of final action items from TPAC 2017 meeting (?)
W3C spec editing, testing, lifecycle info
- =JeffH (Wednesday, 8 November)
WebEx for TPAC
Last message date: Thursday, 30 November 2017 22:09:46 UTC