It's not clear how the authenticator would find out that the server has deleted the key. Also, not deleting the credential does not seem to have any bad effects from a security perspective. -- GitHub Notification of comment by vijaybh Please view or discuss this issue at https://github.com/w3c/webauthn/issues/17#issuecomment-219025804 using your GitHub accountReceived on Friday, 13 May 2016 12:08:52 UTC
This archive was generated by hypermail 2.4.0 : Thursday, 24 March 2022 20:38:15 UTC