- From: Mike Jones via GitHub <sysbot+gh@w3.org>
- Date: Thu, 28 Sep 2017 02:46:40 +0000
- To: public-webauthn@w3.org
I agree with John that limiting a key to use with a particular algorithm is a good security practice. This was intentional. I don't know why you're saying that the curve is not specified. The COSE algorithm identifiers are specific to particular algorithms, including the curve. For instance, the ES256 (-7) is specific to a particular curve. -- GitHub Notification of comment by selfissued Please view or discuss this issue at https://github.com/w3c/webauthn/issues/547#issuecomment-332712020 using your GitHub account
Received on Thursday, 28 September 2017 02:46:32 UTC