public-webauthn@w3.org from November 2016 by thread

[w3c/webauthn] 8fac8d: properly ref 'normalize an algorithm' fixes #262; ... GitHub (Wednesday, 30 November)

[webauthn] new commits pushed by equalsJeffH =JeffH via GitHub (Wednesday, 30 November)

[w3c/webauthn] 3f91a6: fixup sample-authn example step 9. fixes #234 GitHub (Wednesday, 30 November)

[webauthn] new commits pushed by equalsJeffH =JeffH via GitHub (Wednesday, 30 November)

[w3c/webauthn] 931199: add @bzbarsky to acks GitHub (Wednesday, 30 November)

[webauthn] new commits pushed by equalsJeffH =JeffH via GitHub (Wednesday, 30 November)

[w3c/webauthn] 2791e1: Built by Travis-CI: f891d0cb3a756d0cc4c97259301b62... GitHub (Wednesday, 30 November)

[webauthn] new commits pushed by WebAuthnBot WebAuthnBot via GitHub (Wednesday, 30 November)

[w3c/webauthn] GitHub (Wednesday, 30 November)

[w3c/webauthn] ad12bd: remove ScopedCredentialInfo.publicKey; use credent... GitHub (Wednesday, 30 November)

[w3c/webauthn] 5f9172: tag Navigator w/ <a> GitHub (Wednesday, 30 November)

[webauthn] new commits pushed by equalsJeffH =JeffH via GitHub (Wednesday, 30 November)

Re: suggested issues to close (was: 11/30/2016 W3C Web Authentication WG Agenda Hodges, Jeff (Wednesday, 30 November)

Re: [webauthn] Clarify how a user can authenticate from multiple devices =JeffH via GitHub (Wednesday, 30 November)

Closed: [webauthn] Scoped credentials represent a relationship between user and RP =JeffH via GitHub (Wednesday, 30 November)

Re: [webauthn] Scoped credentials represent a relationship between user and RP =JeffH via GitHub (Wednesday, 30 November)

Re: [webauthn] also cite the other extant TLS channel binding mechanisms? =JeffH via GitHub (Wednesday, 30 November)

Closed: [webauthn] also cite the other extant TLS channel binding mechanisms? =JeffH via GitHub (Wednesday, 30 November)

bridge for today's WebAuthn call Samuel Weiler (Wednesday, 30 November)

11/30/2016 W3C Web Authentication WG Agenda Anthony Nadalin (Tuesday, 29 November)

[w3c/webauthn] 0049e1: Built by Travis-CI: a5e28e82c5e37b21ed5f29c44ac4e5... GitHub (Tuesday, 22 November)

[webauthn] new commits pushed by WebAuthnBot WebAuthnBot via GitHub (Tuesday, 22 November)

[w3c/webauthn] a5e28e: point at github milestones GitHub (Tuesday, 22 November)

[webauthn] new commits pushed by samweiler samweiler via GitHub (Tuesday, 22 November)

11/23/2016 W3C WebAuthentication WG Agenda Anthony Nadalin (Monday, 21 November)

Re: [webauthn] should authenticator layer send hashed or unhashed rpId to authenticators? Angelo Liao via GitHub (Saturday, 19 November)

Re: [webauthn] Credential ID not signed Angelo Liao via GitHub (Friday, 18 November)

Re: [webauthn] Clarify uses of ClientData Angelo Liao via GitHub (Friday, 18 November)

Re: [webauthn] Move `allowList` from optional to default on `getAssertion` Angelo Liao via GitHub (Friday, 18 November)

[webauthn] Throw "NotFoundError" when internal authenticator is not available or not found Angelo Liao via GitHub (Friday, 18 November)

Fwd: Intent to Implement: Web Authentication API for Chrome aczeskis@google.com (Wednesday, 16 November)

[w3c/webauthn] 26f20b: put back vijay's suggestion that got dropped GitHub (Wednesday, 16 November)

[webauthn] new commits pushed by leshi Alexei Czeskis via GitHub (Wednesday, 16 November)

[w3c/webauthn] fb4f3e: Adds authenticator attachement to credential optio... GitHub (Wednesday, 16 November)

[webauthn] new commits pushed by leshi Alexei Czeskis via GitHub (Wednesday, 16 November)

FYI: Intent to implement and ship: Web Authentication Hodges, Jeff (Monday, 14 November)

Re: [webauthn] TAG review feedback: Align Credential interface with Credential Management? jeisinger via GitHub (Saturday, 12 November)

[w3c/webauthn] f54fd0: Built by Travis-CI: 7c59dd38730d46db68d4a4fb1d48c9... GitHub (Wednesday, 9 November)

[webauthn] new commits pushed by WebAuthnBot WebAuthnBot via GitHub (Wednesday, 9 November)

[w3c/webauthn] GitHub (Wednesday, 9 November)

[w3c/webauthn] 5f9172: tag Navigator w/ <a> GitHub (Wednesday, 9 November)

[webauthn] new commits pushed by equalsJeffH =JeffH via GitHub (Wednesday, 9 November)

[webauthn] Move {#sample-scenarios} (currently Section 10) to the top of the doc Vijay Bharadwaj via GitHub (Wednesday, 9 November)

[webauthn] Update attestation format identifiers in registry to match spec Vijay Bharadwaj via GitHub (Wednesday, 9 November)

Re: [webauthn] Jeffh editorial cleanups 3 Vijay Bharadwaj via GitHub (Wednesday, 9 November)

Re: [webauthn] Moving callers from U2F to WebAuthn Vijay Bharadwaj via GitHub (Wednesday, 9 November)

Closed: [webauthn] Moving callers from U2F to WebAuthn Vijay Bharadwaj via GitHub (Wednesday, 9 November)

[w3c/webauthn] GitHub (Wednesday, 9 November)

[w3c/webauthn] 2d6a7a: Adding fido appid extension (#229) GitHub (Wednesday, 9 November)

[webauthn] new commits pushed by vijaybh Vijay Bharadwaj via GitHub (Wednesday, 9 November)

[webauthn] Timeouts should be in ms not seconds Vijay Bharadwaj via GitHub (Wednesday, 9 November)

Re: [webauthn] Adds authenticator attachement to credential options =JeffH via GitHub (Wednesday, 9 November)

[w3c/webauthn] 0281c7: use Vijay's examples GitHub (Wednesday, 9 November)

[webauthn] new commits pushed by leshi Alexei Czeskis via GitHub (Wednesday, 9 November)

Re: [webauthn] Spec should not mandate behavior of server =JeffH via GitHub (Wednesday, 9 November)

[w3c/webauthn] 5f9172: tag Navigator w/ <a> GitHub (Wednesday, 9 November)

[webauthn] new commits pushed by equalsJeffH =JeffH via GitHub (Wednesday, 9 November)

[w3c/webauthn] 92fe6c: fix not-properly-closed <div> GitHub (Tuesday, 8 November)

[webauthn] new commits pushed by equalsJeffH =JeffH via GitHub (Tuesday, 8 November)

[w3c/webauthn] 2f723d: Jeffh editorial cleanups 2 (#236) GitHub (Tuesday, 8 November)

[w3c/webauthn] 276018: attestation statement definition GitHub (Tuesday, 8 November)

[webauthn] new commits pushed by equalsJeffH =JeffH via GitHub (Tuesday, 8 November)

[webauthn] new commits pushed by equalsJeffH =JeffH via GitHub (Tuesday, 8 November)

11/09/2016 W3C Web Authentication WG Agenda Anthony Nadalin (Tuesday, 8 November)

[webauthn] Do we need "Algorithm Usage Location(s)" and "JOSE Implementation Requirements" in the IANA Considerations section? Vijay Bharadwaj via GitHub (Tuesday, 8 November)

Closed: [webauthn] "relaxing the same-origin restriction" =JeffH via GitHub (Monday, 7 November)

Re: [webauthn] "relaxing the same-origin restriction" =JeffH via GitHub (Monday, 7 November)

Closed: [webauthn] Clarify how AAGUID is generated to avoid collisions =JeffH via GitHub (Monday, 7 November)

Re: [webauthn] Clarify how AAGUID is generated to avoid collisions =JeffH via GitHub (Monday, 7 November)

Re: referencing W3C or WhatWG specs (was: [webauthn] new commits pushed by equalsJeffH Hodges, Jeff (Monday, 7 November)

[webauthn] Refine meaning of ScopedCredentialType to be "signature & assertion format (and version thereof)" =JeffH via GitHub (Sunday, 6 November)

Re: Android Key Attestation is "Self Attestation" ? Hodges, Jeff (Saturday, 5 November)

[webauthn] Why are various predefined extensions defined as extensions, and not just parts of the spec? Boris Zbarsky via GitHub (Friday, 4 November)

[webauthn] Authenticator selection extension needs to define snapshotting behavior Boris Zbarsky via GitHub (Friday, 4 November)

[webauthn] Please ensure that all ArrayBuffer creations are done explicitly, in the correct global Boris Zbarsky via GitHub (Friday, 4 November)

[webauthn] What does "which has no other operations in progress" mean in practice? Boris Zbarsky via GitHub (Friday, 4 November)

[webauthn] Why is the only value of ScopedCredentialType "ScopedCred" as opposed to "ScopedCredential"? Boris Zbarsky via GitHub (Friday, 4 November)

[webauthn] What ensures any semblance of interop for WebAuthnExtensions? Boris Zbarsky via GitHub (Friday, 4 November)

[webauthn] Can the "attestation" of a WebAuthnAttestation be a non-object? Boris Zbarsky via GitHub (Friday, 4 November)

[webauthn] Is there a reason "WebAuthnAssertion" is not "WebAuthenticationAssertion"? Boris Zbarsky via GitHub (Friday, 4 November)

[webauthn] Which of the attestation format interfaces are expected to be exposed in UAs? Boris Zbarsky via GitHub (Friday, 4 November)

[webauthn] Why are some of the attestation interfaces [SecureContext] while others are not? Boris Zbarsky via GitHub (Friday, 4 November)

[webauthn] Various attributes of ScopedCredentialInfo should probably be [SameObject] Boris Zbarsky via GitHub (Friday, 4 November)

[webauthn] Description of ScopedCredentialInfo.credential seems odd Boris Zbarsky via GitHub (Friday, 4 November)

[webauthn] authenticatorCancel seems like it can cancel too much Boris Zbarsky via GitHub (Friday, 4 November)

[webauthn] Creation of WebAuthnAssertion in getAssertion should probably be more explicit Boris Zbarsky via GitHub (Friday, 4 November)

[webauthn] What does it mean to "get assertions" in getAssertion step 7? Boris Zbarsky via GitHub (Friday, 4 November)

[webauthn] "might be present on this authenticator" could use a clearer definition Boris Zbarsky via GitHub (Friday, 4 November)

[webauthn] getAssertion needs to not go async before making a copy of the assertionChallenge Boris Zbarsky via GitHub (Friday, 4 November)

[webauthn] AssertionOptions and ScopedCredentialOptions could both inherit from a dictionary which has their shared members Boris Zbarsky via GitHub (Friday, 4 November)

[webauthn] Creation of ScopedCredentialInfo in makeCredential should probably be more explicit Boris Zbarsky via GitHub (Friday, 4 November)

[webauthn] ScopedCredentialDescriptor can contain BufferSources that are processed async Boris Zbarsky via GitHub (Friday, 4 November)

[webauthn] "excludeList" should probably be "the excludeList member of _options_" in makeCredential Boris Zbarsky via GitHub (Friday, 4 November)

[webauthn] "JSON serialization" in makeCredential probably needs to be defined more clearly Boris Zbarsky via GitHub (Friday, 4 November)

[webauthn] I don't understand how to create a ClientData in makeCredential Boris Zbarsky via GitHub (Friday, 4 November)

[webauthn] Should attestationChallenge be snapshotted in makeCredential, or used before going async? Boris Zbarsky via GitHub (Friday, 4 November)

[webauthn] callerOrigin isn't actually the origin of the caller; it's the origin of the callee Boris Zbarsky via GitHub (Friday, 4 November)

[webauthn] Processing model for extensions is very underdefined Boris Zbarsky via GitHub (Friday, 4 November)

[webauthn] "If extensions was specified" should instead use the "present" terminology Boris Zbarsky via GitHub (Friday, 4 November)

[webauthn] excludeList can be defaulted to a zero-length sequence in IDL instead of prose Boris Zbarsky via GitHub (Friday, 4 November)

[webauthn] The concept "empty" is not really defined for IDL sequences Boris Zbarsky via GitHub (Friday, 4 November)

[webauthn] What does "If normalizedAlgorithm is empty" mean? Boris Zbarsky via GitHub (Friday, 4 November)

[webauthn] What does normalizedParameters actually contain in makeCredential? Boris Zbarsky via GitHub (Friday, 4 November)

Boris: Thanks for.. Hodges, Jeff (Friday, 4 November)

[webauthn] Exception handling in cryptoParameters processing needs to be clarified Boris Zbarsky via GitHub (Friday, 4 November)

[webauthn] WebCryptoAPI's "normalizing an algorithm" cannot be done as part of async steps Boris Zbarsky via GitHub (Friday, 4 November)

[webauthn] When talking about "normalizing an algorithm", please just link to it Boris Zbarsky via GitHub (Friday, 4 November)

[webauthn] Link to WebCrypto API is stale Boris Zbarsky via GitHub (Friday, 4 November)

[webauthn] _rpId_ generation allows more relaxation of same-origin restrictions than document.domain does Boris Zbarsky via GitHub (Friday, 4 November)

[webauthn] Is _rpId_ supposed to look like an origin serialization, or like a hostname? Boris Zbarsky via GitHub (Friday, 4 November)

[webauthn] Need to clearly define what it means to SHA-256 hash the "host" output of the document.domain setter Boris Zbarsky via GitHub (Friday, 4 November)

[webauthn] The W3C HTML spec is broken, and probably shouldn't be referenced Boris Zbarsky via GitHub (Friday, 4 November)

[webauthn] Please coordinate with the HTML spec to extract the relevant bits of the document.domain setter so you can call them Boris Zbarsky via GitHub (Friday, 4 November)

[webauthn] Setting _rpId_ to _callerOrigin_ doesn't make sense Boris Zbarsky via GitHub (Friday, 4 November)

[webauthn] There is no "current settings object" in algorithm steps that are executing in parallel Boris Zbarsky via GitHub (Friday, 4 November)

[webauthn] Does "Then asynchronously continue executing the following steps" mean "in parallel"? Boris Zbarsky via GitHub (Friday, 4 November)

[webauthn] Grammar of makeCredential step 1 is a bit odd Boris Zbarsky via GitHub (Friday, 4 November)

[webauthn] "authentication" attribute on Navigator should be [SecureContext] Boris Zbarsky via GitHub (Friday, 4 November)

[webauthn] Should the "authentication" attribute on Navigator be [SameObject]? Boris Zbarsky via GitHub (Friday, 4 November)

[webauthn] It would be nice if the definition of "Scoped Credential" said something about what `identifier` and `type` are Boris Zbarsky via GitHub (Friday, 4 November)

[webauthn] "an Relying Party" should be "a Relying Party" Boris Zbarsky via GitHub (Friday, 4 November)

Re: [webauthn] section verification of WebAuthnAssertion added. See #102 Rolf Lindemann via GitHub (Friday, 4 November)

[w3c/webauthn] 5a2dc5: section verification of WebAuthnAssertion added. S... GitHub (Friday, 4 November)

Re: [webauthn] Add section describing verification of a WebAuthnAssertion Rolf Lindemann via GitHub (Friday, 4 November)

[webauthn] new commits pushed by rlin1 Rolf Lindemann via GitHub (Friday, 4 November)

[webauthn] remove id requirement in ScopedCredentialDescriptor Angelo Liao via GitHub (Wednesday, 2 November)

[w3c/webauthn] d1f5af: address vijay's comments GitHub (Wednesday, 2 November)

[webauthn] Simplifying attestation, take two Vijay Bharadwaj via GitHub (Wednesday, 2 November)

Re: [webauthn] explicitly denote RSA signature scheme Vijay Bharadwaj via GitHub (Wednesday, 2 November)

Re: [webauthn] remove ScopedCredentialInfo.publicKey; use "credential public key" term consistently Vijay Bharadwaj via GitHub (Wednesday, 2 November)

Re: [webauthn] Adding u2f appid extension Vijay Bharadwaj via GitHub (Wednesday, 2 November)

Regrets for today's call Vijay Bharadwaj (Wednesday, 2 November)

[w3c/webauthn] 558837: Adds authenticator attachement to credential optio... GitHub (Wednesday, 2 November)

[webauthn] new commits pushed by leshi Alexei Czeskis via GitHub (Wednesday, 2 November)

[w3c/webauthn] 700775: typo fix GitHub (Wednesday, 2 November)

[webauthn] new commits pushed by leshi Alexei Czeskis via GitHub (Wednesday, 2 November)

[w3c/webauthn] 2ca56e: addressing comments from issue peanut gallery :) GitHub (Wednesday, 2 November)

[webauthn] new commits pushed by leshi Alexei Czeskis via GitHub (Wednesday, 2 November)

RE: 11/02/2016 W3C Web Authentication WG Agenda Anthony Nadalin (Wednesday, 2 November)

[webauthn] certifyinfo needs to be specified gmandyam via GitHub (Tuesday, 1 November)

[webauthn] Enforce strict same-origin policy on rpId Angelo Liao via GitHub (Tuesday, 1 November)

Re: [webauthn] Add notion of internal/external to options Vijay Bharadwaj via GitHub (Tuesday, 1 November)

Last message date: Wednesday, 30 November 2016 23:54:42 UTC