Wednesday, 31 August 2016
- RE: [webauthn] Add Android "N" attestation type.
- RE: [webauthn] Add Android "N" attestation type.
- Re: [webauthn] breakup IDL
- Re: [webauthn] Add Android "N" attestation type.
- Closed: [webauthn] Remove attestation specification from spec
- Re: [webauthn] Remove attestation specification from spec
- Re: [webauthn] Add opaque data extension
- Closed: [webauthn] Add opaque data extension
- Re: [webauthn] Token Binding ID: JWK -> opaque
- Re: [webauthn] Token Binding ID: JWK -> opaque
- Re: [webauthn] Allow caller to pick between strict and eTLD+1 matching
- [w3c/webauthn] 2b4d1f: Built by Travis-CI: a7817009bf82bd1ef3bca7d7c05ab3...
- [webauthn] new commits pushed by WebAuthnBot
- Re: [webauthn] Allow caller to pick between strict and eTLD+1 matching
- [w3c/webauthn] a78170: Update index.bs with proposed location extension (...
- [webauthn] new commits pushed by vijaybh
- [w3c/webauthn] 2d50c2: Built by Travis-CI: 62b67c02a37ab54ca8b3c1f7606bb7...
- [webauthn] new commits pushed by WebAuthnBot
- [w3c/webauthn] 62b67c: Cleaned up exposition of processing rules (#154)
- [w3c/webauthn]
- Closed: [webauthn] Client processing steps are not aligned with authenticator model
- Closed: [webauthn] Problem with authn selection extension
- [webauthn] new commits pushed by vijaybh
- Re: [webauthn] Adding the User Verification Mode extension as per discussions in theā¦
- Re: [webauthn] Secure context should be MUST not SHOULD
- Re: [webauthn] Fixed spelling, grammar, and document syntax issues
- Re: [webauthn] Cleaned up exposition of processing rules
- [webauthn] Should rpId be removed from clientData?
Tuesday, 30 August 2016
- [webauthn] should authenticator layer send hashed or unhashed rpId to authenticators?
- [w3c/webauthn] 00fe43: move IDL frags to applicable sections. fixes #112 ...
- [webauthn] new commits pushed by equalsJeffH
- [w3c/webauthn] ee8715: fix xref
- [webauthn] new commits pushed by equalsJeffH
- Re: [webauthn] 4.1 heading should appear before the IDL
- 08/31/2016 W3C Web Authentication WG Agenda
- Re: [webauthn] Update index.bs with proposed location extension
- Re: [webauthn] Update index.bs with proposed location extension
- Call for Exclusions (Update): Web Authentication: A Web API for accessing scoped credentials
Monday, 29 August 2016
- Closed: [webauthn] makeCredential() should use a dictionary
- Re: [webauthn] makeCredential() should use a dictionary
Sunday, 28 August 2016
- work-in-progress: jeffh-editorial-cleanups
- [w3c/webauthn] 80bb3f: clarify optionality of FIDO MDS. Fixes #47.
- [webauthn] new commits pushed by equalsJeffH
Wednesday, 24 August 2016
- Re: Proposal for W3C-style Attestation Registry
- RE: Proposal for W3C-style Attestation Registry
- 08/24/2016 W3C Web Authentication WG Cancelled
- [webauthn] Privacy concerns with blacklist/whitelist
- [webauthn] Spec draft points to wrong GitHub issues page
- Re: [webauthn] Cleaned up exposition of processing rules
Tuesday, 23 August 2016
Monday, 22 August 2016
- Re: [webauthn] Change Android SafetyNet attestation type identifier ?
- Re: [webauthn] clarify content of algorithm member of ScopedCredentialParameters
- Re: [webauthn] Section 4.3: add reference to privacy
- Re: [webauthn] Section 4: Mention requirement for user to give consent for key to be used
- Re: [webauthn] Silent Authn? clarification of bit 0 in AuthenticatorData
- Re: [webauthn] Add opaque data extension
- Re: [webauthn] clarify that at least one model of attestation must be employed
- [webauthn] normalize RFC2119 language
- Re: [webauthn] Relying Party or Server
- [webauthn] do not entirely lose distinctions distinctions between External and Embedded Authenticators
- Re: [webauthn] do not totally lose the term "WebAuthn Relying Party"
- [webauthn] do not totally lose the term "WebAuthn Relying Party"
Thursday, 18 August 2016
- Re: our cloud bikeshed? (was: issues with latest bikeshed
- our cloud bikeshed? (was: issues with latest bikeshed
- Re: issues with latest bikeshed
- issues with latest bikeshed
- Re: [webauthn] Secure context should be MUST not SHOULD
- Re: [webauthn] Secure context should be MUST not SHOULD
- [webauthn] Define UTF-8 string
- [webauthn] lowercase form of this RP ID
- [webauthn] 4.1 heading should appear before the IDL
- Re: [webauthn] makeCredential() should use a dictionary
- Re: [webauthn] callerOrigin
- Re: [webauthn] callerOrigin
- Re: [webauthn] facet should be USVString
- Re: [webauthn] Consider using USVString instead of DOMString sometimes
- Re: [webauthn] What if callerOrigin is an opaque origin
- Re: [webauthn] makeCredential() should use a dictionary
- Re: [webauthn] DOMString[] should be FrozenArray<DOMString>
- Re: [webauthn] Problem with authn selection extension
- Re: [webauthn] clarify normality of authenticator model - is it actually authenticator API ?
Wednesday, 17 August 2016
- [webauthn] clarify normality of authenticator model - is it actually authenticator API ?
- [w3c/webauthn]
- Re: [webauthn] Cleaned up exposition of processing rules
- Re: [webauthn] Cleaned up exposition of processing rules
- Re: WebAuthn API Specification Review
- Patent exclusions (Re: 08/17/2016 W3C Web Authentication WG Agenda)
- Re: [webauthn] facet should be defined in terms of the HTML Standard
- [webauthn] facet should be USVString
- [webauthn] facet should be defined in terms of the HTML Standard
- [webauthn] "web origin of the script"
- Re: [webauthn] What if callerOrigin is an opaque origin
- Re: [webauthn] What if callerOrigin is an opaque origin
- [webauthn] What if callerOrigin is an opaque origin
- [webauthn] callerOrigin
- [webauthn] makeCredential() should use a dictionary
- [w3c/webauthn] 056c63: Address comments from @equalsJeffH
- [webauthn] new commits pushed by vijaybh
Tuesday, 16 August 2016
- Re: [webauthn] Cleaned up exposition of processing rules
- Re: [webauthn] also cite the other extant TLS channel binding mechanisms?
- [webauthn] also cite the other extant TLS channel binding mechanisms?
- Re: [webauthn] hostname canonicalization in {#makeCredential} section?
- [webauthn] hostname canonicalization in {#makeCredential} section?
- [w3c/webauthn]
- Re: [webauthn] IDL cleanup: don't require callers to create Credential objects
- 08/17/2016 W3C Web Authentication WG Agenda
- [webauthn] Consider using USVString instead of DOMString sometimes
- [webauthn] DOMString[] should be FrozenArray<DOMString>
Monday, 15 August 2016
Friday, 12 August 2016
- Re: [webauthn] tokenBinding in ClientData should be a binary type (perhaps base64) and not JsonWebKey
- [webauthn] tokenBinding in ClientData should be a binary type (perhaps base64) and not JsonWebKey
Wednesday, 10 August 2016
- [w3c/webauthn] 98fb91: Allow caller to pick between strict and eTLD+1 mat...
- [w3c/webauthn]
- [webauthn] new commits pushed by vijaybh
- [webauthn] new commits pushed by vijaybh
- Re: [webauthn] Make attestation more modular
- RE: returning a multi-factor authenticator's factor-in-use and protection scheme to the server - UVM extension proposal v2
- AW: returning a multi-factor authenticator's factor-in-use and protection scheme to the server - UVM extension proposal v2
- [w3c/webauthn] c79e21: IDL cleanup: don't require callers to create Crede...
- [webauthn] new commits pushed by vijaybh
- [w3c/webauthn] 9c7d00: Fix typo (thanks Travis!)
- [webauthn] new commits pushed by vijaybh
- [w3c/webauthn] 966e41: Built by Travis-CI: 2b72ddfb805a4a0e2797afccea88cf...
- [webauthn] new commits pushed by WebAuthnBot
- [w3c/webauthn] c79e21: IDL cleanup: don't require callers to create Crede...
- Re: [webauthn] IDL cleanup: don't require callers to create Credential objects
- [webauthn] new commits pushed by jcjones
- Re: [webauthn] Make attestation more modular
- [w3c/webauthn] 212de8: Clean up attestation
- [webauthn] new commits pushed by vijaybh
- [webauthn] Clarify the definition of "origin"
- RE: 08/10/2016 W3C Web Authentication WG Agenda
- RE: 08/10/2016 W3C Web Authentication WG Agenda
- RE: 08/10/2016 W3C Web Authentication WG Agenda
- Re: 08/10/2016 W3C Web Authentication WG Agenda
- RE: 08/10/2016 W3C Web Authentication WG Agenda
Tuesday, 9 August 2016
- 08/10/2016 W3C Web Authentication WG Agenda
- RE: returning a multi-factor authenticator's factor-in-use and protection scheme to the server - UVM extension proposal v2
Monday, 8 August 2016
- [w3c/webauthn] d5b952: first draft of new proposal. See #156
- Re: wrt deprecating eTLD+1 (was: Can we remove the PSL dependency?)
- RE: returning a multi-factor authenticator's factor-in-use and protection scheme to the server - UVM extension proposal
- RE: returning a multi-factor authenticator's factor-in-use and protection scheme to the server - UVM extension proposal
- RE: returning a multi-factor authenticator's factor-in-use and protection scheme to the server - UVM extension proposal
- Re: [webauthn] Clarify meaning of UVI
- Re: [webauthn] Clarify meaning of UVI
- Re: [webauthn] Clarify meaning of UVI
- Re: [webauthn] Clarify meaning of UVI
- Re: [webauthn] Clarify meaning of UVI
- [webauthn] new commits pushed by rlin1
- RE: returning a multi-factor authenticator's factor-in-use and protection scheme to the server - UVM extension proposal
- Re: [webauthn] Clarify meaning of UVI
- Re: [webauthn] Clarify meaning of UVI
- Re: [webauthn] Clarify meaning of UVI
Sunday, 7 August 2016
Friday, 5 August 2016
- Re: [webauthn] Clarify meaning of UVI
- Re: [webauthn] Clarify meaning of UVI
- Re: [webauthn] Clarify meaning of UVI
- Re: [webauthn] Clarify meaning of UVI
- Re: [webauthn] Clarify meaning of UVI
- RE: Spec status
Thursday, 4 August 2016
- RE: Spec status
- [webauthn] new commits pushed by vijaybh
- [w3c/webauthn] c79e21: IDL cleanup: don't require callers to create Crede...
- Spec status
- [w3c/webauthn] 066351: TravisCI Fix: Don't update gh-pages for non-master...
- [webauthn] new commits pushed by vijaybh
- Re: [webauthn] Update index.bs with proposed location extension
- Re: [webauthn] Update index.bs with proposed location extension
- Re: [webauthn] Update index.bs with proposed location extension
Wednesday, 3 August 2016
- RE: returning a multi-factor authenticator's factor-in-use and protection scheme to the server
- RE: 10 August: 90 minute meeting
- Re: 10 August: 90 minute meeting
- 10 August: 90 minute meeting
- [webauthn] Clarify meaning of UVI
- RE: returning a multi-factor authenticator's factor-in-use and protection scheme to the server
- Re: [webauthn] Cleaned up exposition of processing rules
- RE: Proposal for a Location Extension, rev 4
- RE: 08/03/2106 W3C WebAuthentication WG Agenda
Tuesday, 2 August 2016
- 08/03/2106 W3C WebAuthentication WG Agenda
- RE: draft-hodges-webauthn-registries-00
- Proposal for a Location Extension, rev 4
- Re: wrt deprecating eTLD+1 (was: Can we remove the PSL dependency?)
- Re: Can we remove the PSL dependency?
- Re: wrt deprecating eTLD+1 (was: Can we remove the PSL dependency?)