Re: [webauthn] Add note about use of floating point in extensions passed through that clients do not recognize (#1307) from Peter Occil via GitHub on 2019-09-25 (public-webauthn@w3.org from September 2019)

From: Peter Occil via GitHub <sysbot+gh@w3.org>
Date: Wed, 25 Sep 2019 11:44:09 +0000
To: public-webauthn@w3.org
Message-ID: <issue_comment.created-534982654-1569411848-sysbot+gh@w3.org>

If that's the case, then there should be an additional note that different clients might choose different integer thresholds for converting floating-point values to integers, and that this is not a problem because canonicalized CTAP2 messages generated by the protocol are not meant to be compared bit-for-bit with each other (either directly or via hash codes).  This is unlike other protocols like DKIM and XML Canonicalization, which do use canonicalization for bit-for-bit data comparison.

-- 
GitHub Notification of comment by peteroupc
Please view or discuss this issue at https://github.com/w3c/webauthn/pull/1307#issuecomment-534982654 using your GitHub account

Received on Wednesday, 25 September 2019 11:44:11 UTC