- From: Anders Rundgren via GitHub <sysbot+gh@w3.org>
- Date: Thu, 08 Jun 2017 07:45:55 +0000
- To: public-web-nfc@w3.org
Regarding security and NFC: AFAICT, W3C WebAuthentication supports FIDO over the Web using a _dedicated_ NFC scheme. My _initial_ _studies_ indicate that to succeed stealing a login from WebAuthentication using NFC as well as from a properly designed scheme based on this proposal, you need to phish the user and on-the-fly intercept and rewrite RF data. More to come... -- GitHub Notification of comment by cyberphone Please view or discuss this issue at https://github.com/w3c/web-nfc/issues/128#issuecomment-307026199 using your GitHub account
Received on Thursday, 8 June 2017 07:46:01 UTC