- From: Dominique Hazael-Massieux <dom@w3.org>
- Date: Mon, 2 May 2022 19:31:52 +0200
- To: public-webauthn-adoption@w3.org
IIW
- re-interest about handling VC using WebAuthn; identity wallet in the
browser, anchored in a FIDO2 authenticator; that issuer / verifier could
interact with
not interest possible, and FIDO2 may not be best modality for VC
issuance
missing cryptography primitives in the browser
- discussions around hardware-backing of WebAuthn - and boundaries of
authenticator in the context of passkeys / multi-device credentials -
complexity arises in the context of attestation in relation to device
public keys
=> conflicting advice on whether attestation is desirable (no
attestation provided by current beta Apple authenticators)
security properties are anchored in the vendor reputation rather
than through attestation
Passkeys outreach: still targeting June release, slow progress
Matt: working on update to webauthn.io
MOOC update:
Module 3 outline is complete, Module 4 outline under way.
Webauthn UX monitoring: FIDO still available to support this
Received on Monday, 2 May 2022 17:31:56 UTC