W3C home > Mailing lists > Public > public-webauthn@w3.org > May 2016

Re: [webauthn] WebAPI: Authentication failure due to inactivity

From: Vijay Bharadwaj via GitHub <sysbot+gh@w3.org>
Date: Fri, 13 May 2016 12:08:50 +0000
To: public-webauthn@w3.org
Message-ID: <issue_comment.created-219025804-1463141330-sysbot+gh@w3.org>
It's not clear how the authenticator would find out that the server 
has deleted the key. Also, not deleting the credential does not seem 
to have any bad effects from a security perspective.

-- 
GitHub Notification of comment by vijaybh
Please view or discuss this issue at 
https://github.com/w3c/webauthn/issues/17#issuecomment-219025804 using
 your GitHub account
Received on Friday, 13 May 2016 12:08:52 UTC

This archive was generated by hypermail 2.4.0 : Thursday, 24 March 2022 20:38:15 UTC