[webauthn] Filter makeCredential() by acceptable trust anchors from Jeffrey Yasskin via GitHub on 2017-04-12 (public-webauthn@w3.org from April 2017)

From: Jeffrey Yasskin via GitHub <sysbot+gh@w3.org>
Date: Wed, 12 Apr 2017 00:58:25 +0000
To: public-webauthn@w3.org
Message-ID: <issues.opened-221121763-1491958704-sysbot+gh@w3.org>

jyasskin has just created a new issue for https://github.com/w3c/webauthn:

== Filter makeCredential() by acceptable trust anchors ==
https://w3c.github.io/webauthn/#registering-a-new-credential says that a relying party has "a list of acceptable trust anchors", and it only accepts attestations rooted at those anchors. However, I don't see any way to tell the UA to only show the user a choice of authenticators that can produce such acceptable attestations. If I haven't just missed that option, it seems like this is going to produce frustrated users who select an authenticator that it turns out the site won't accept.

Please view or discuss this issue at https://github.com/w3c/webauthn/issues/396 using your GitHub account

Received on Wednesday, 12 April 2017 00:58:32 UTC