[w3c/webauthn] 634c26: Represent binary data as ArrayBuffers instead of b... from GitHub on 2016-05-06 (public-webauthn@w3.org from May 2016)

From: GitHub <noreply@github.com>
Date: Fri, 06 May 2016 08:15:01 -0700
To: public-webauthn@w3.org
Message-ID: <572cb4f52bd99_3c823f7e35d952b85495c@hookshot-fe2-cp1-prd.iad.github.net.mail>
  Branch: refs/heads/vijaybh/lots-of-fpwd-issues
  Home:   https://github.com/w3c/webauthn
  Commit: 634c269257db45919bec3cc4c7dd0dc40a492e0a
      https://github.com/w3c/webauthn/commit/634c269257db45919bec3cc4c7dd0dc40a492e0a
  Author: Vijay Bharadwaj <vijaybh@users.noreply.github.com>
  Date:   2016-05-03 (Tue, 03 May 2016)

  Changed paths:
    M index.src.html

  Log Message:
  -----------
  Represent binary data as ArrayBuffers instead of base64-encoded DOMStrings (#77)

* Represent binary data as ArrayBuffers instead of base64-encoded DOMStrings

Fixes #61.

I switched the main API completely from base64-encoded DOMStrings to
Buffersource (for input parameters) and ArrayBuffer (for output
parameters). The actual signatures are still computed over the same data
as before, so signatures computed after this change will be compatible
with those computed before, except for being represented differently.

I moved the ClientData section into the Authenticator model section
since it is not directly used by script authors. This structure still
does base64 encoding of the challenge, for two reasons. First, this
maintains backward compatibility. Second, it is more natural to
represent a binary challenge in JSON as base64 rather than the clunky
array notation.

I would like to advocate for also changing the rawData in the TPM and
packed attestation formats to ArrayBuffers so we can sign directly over
the data without base64 encoding. That would seem to simplify
processing. However this would break compatibility so I would like to
gather opinions from the group before making that change. On the bright
side, I do not know of any implementations producing WebAuthn
attestation statements in these formats yet.

* Remove base64 from packed and TPM attestation formats

Remove base64 encoding from the rawData fields and return them directly
as ArrayBuffers.

* Clarify Android attestation procedure


  Commit: 53d98514a6cdbcced42e63ee0c68f2177ff52e5a
      https://github.com/w3c/webauthn/commit/53d98514a6cdbcced42e63ee0c68f2177ff52e5a
  Author: Mike Jones <Michael.Jones@microsoft.com>
  Date:   2016-05-03 (Tue, 03 May 2016)

  Changed paths:
    M index.src.html

  Log Message:
  -----------
  Pre-FWPD proofreading corrections (#81)


  Commit: 32994fe3357631ec7f4e0bc5a7bbaef5af27f61c
      https://github.com/w3c/webauthn/commit/32994fe3357631ec7f4e0bc5a7bbaef5af27f61c
  Author: Wendy Seltzer <wendy@seltzer.org>
  Date:   2016-05-04 (Wed, 04 May 2016)

  Changed paths:
    A meetings/2016-05-13-Berlin-f2f.md

  Log Message:
  -----------
  Create 2016-05-13-Berlin-f2f.md

Input from https://lists.w3.org/Archives/Public/public-webauthn/2016May/0044.html


  Commit: 1be2d83c62c41f4922732204c787aa5ea3f6b077
      https://github.com/w3c/webauthn/commit/1be2d83c62c41f4922732204c787aa5ea3f6b077
  Author: bifurcation <ceci.nest.pas.une.adresse@gmail.com>
  Date:   2016-05-04 (Wed, 04 May 2016)

  Changed paths:
    M meetings/2016-05-13-Berlin-f2f.md

  Log Message:
  -----------
  Fix formatting in F2F meeting agenda


  Commit: c56539697174ee192447c3d3f3283e542e79b355
      https://github.com/w3c/webauthn/commit/c56539697174ee192447c3d3f3283e542e79b355
  Author: Wendy Seltzer <wendy@seltzer.org>
  Date:   2016-05-04 (Wed, 04 May 2016)

  Changed paths:
    M meetings/2016-05-13-Berlin-f2f.md

  Log Message:
  -----------
  fix formatting


  Commit: cd4e78537a1e7da0e984b8389637800947360ddb
      https://github.com/w3c/webauthn/commit/cd4e78537a1e7da0e984b8389637800947360ddb
  Author: Vijay Bharadwaj <vijaybh@users.noreply.github.com>
  Date:   2016-05-06 (Fri, 06 May 2016)

  Changed paths:
    M index.src.html

  Log Message:
  -----------
  Simplify attestation structure by moving details into authnr model (#76)

* Simplify attestation structure by moving details into authnr model

Moved most of the attestation details into the authenticator model
section, and flattened the structures for simplicity. Updated spec
language to match.

It may be possible to further simplify the attestation details in the
authenticator model section, but I would prefer that an attestation
expert weigh in on that.

Also a few other small formatting fixups.

* Incorporate feedback from JeffH

* Rebasing to master after merge of PR#77

* Simplify Android attestation by removing manipulation of SafetyNet responses

* Incorporate feedback from JeffH, fix an incorrect section level


  Commit: 49d6ba74c25288c298a400f1ec8c1db6eff83c51
      https://github.com/w3c/webauthn/commit/49d6ba74c25288c298a400f1ec8c1db6eff83c51
  Author: Vijay Bharadwaj <vijaybh@users.noreply.github.com>
  Date:   2016-05-06 (Fri, 06 May 2016)

  Changed paths:
    M biblio.json

  Log Message:
  -----------
  Replace TPM hyperlinks with working ones (#82)

Fixes #78

Thanks to JeffH for pointing this out.


  Commit: 061201443c765170a39844298479aef0de4fd1bf
      https://github.com/w3c/webauthn/commit/061201443c765170a39844298479aef0de4fd1bf
  Author: Vijay Bharadwaj <vijaybh@users.noreply.github.com>
  Date:   2016-05-06 (Fri, 06 May 2016)

  Changed paths:
    M biblio.json
    M index.src.html
    A meetings/2016-05-13-Berlin-f2f.md

  Log Message:
  -----------
  Merge remote-tracking branch 'refs/remotes/origin/master' into vijaybh/lots-of-fpwd-issues


Compare: https://github.com/w3c/webauthn/compare/40b11ed5d4d5...061201443c76
Received on Friday, 6 May 2016 17:34:10 UTC