Re: [webauthn] Consider requiring canonical CBOR throughout

note   's https://github.com/w3c/webauthn/issues/543#issuecomment-349944903 wrt CTAP2's CBOR map key sorting order -- it is not the same as canonical CBOR.  it's clearly stated in the CTAP2 spec so if we can address this issue by simply citing [CTAP2 message encoding](https://fidoalliance.org/specs/fido-v2.0-rd-20170927/fido-client-to-authenticator-protocol-v2.0-rd-20170927.html#message-encoding), then we do not have to do anything special wrt the map key sorting order it would seem.

-- 
GitHub Notification of comment by equalsJeffH
Please view or discuss this issue at https://github.com/w3c/webauthn/issues/455#issuecomment-352927390 using your GitHub account

Received on Wednesday, 20 December 2017 00:22:35 UTC