=JeffH
=JeffH via GitHub
- Re: [webauthn] Add gesture verification parameter to option in both makeC and getA (Tuesday, 28 February)
- Re: [webauthn] "NotAllowedError" is in WebIDL editors draft but not in WebIDL Level 1 (Tuesday, 28 February)
- Re: [webauthn] Make makeCredential() more precise. (Tuesday, 28 February)
- Re: [webauthn] "NotAllowedError" is in WebIDL editors draft but not in WebIDL Level 1 (Tuesday, 28 February)
- Re: [webauthn] "rp" isn't a widely enough known acronym?, should be relyingParting instead? (Tuesday, 28 February)
- Re: [webauthn] Editorial: use more elaborate variable names (Tuesday, 28 February)
- [webauthn] new commits pushed by equalsJeffH (Tuesday, 28 February)
- Re: [webauthn] refine user verification and authz gesture definitions, add Test of User Presence (Tuesday, 28 February)
- [webauthn] new commits pushed by equalsJeffH (Tuesday, 28 February)
- [webauthn] new commits pushed by equalsJeffH (Tuesday, 28 February)
- Re: [webauthn] Explain how Token Binding IDs get associated with an HTML context. (Monday, 27 February)
- Re: [webauthn] Editorial: use more elaborate variable names (Saturday, 25 February)
- Re: [webauthn] "rp" isn't a widely enough known acronym?, should be relyingParting instead? (Saturday, 25 February)
- Re: [webauthn] User Verification definition needs to be refined (Friday, 24 February)
- [webauthn] new commits pushed by equalsJeffH (Friday, 24 February)
- [webauthn] new commits pushed by equalsJeffH (Friday, 24 February)
- Re: [webauthn] What does "If normalizedAlgorithm is empty" mean? (Friday, 24 February)
- [webauthn] define what to do if both normalizedAlgorithm and cryptoParameters are empty (Friday, 24 February)
- Re: [webauthn] What does "If normalizedAlgorithm is empty" mean? (Friday, 24 February)
- Re: [webauthn] Make hashAlg a "recognized algorithm name". (Friday, 24 February)
- Re: [webauthn] Add "willMakeCredentialWorkWithTheseConstraints()" method to the API (Friday, 24 February)
- Re: [webauthn] "NotAllowedError" is in WebIDL editors draft but not in WebIDL Level 1 (Friday, 24 February)
- Re: [webauthn] "NotAllowedError" is in WebIDL editors draft but not in WebIDL Level 1 (Friday, 24 February)
- Re: [webauthn] WebAuthn available to Workers? aka "silent authentication" (Friday, 24 February)
- Re: [webauthn] Silent Authn? clarification of bit 0 in AuthenticatorData (Friday, 24 February)
- Re: [webauthn] What does normalizedParameters actually contain in makeCredential? (Thursday, 23 February)
- Re: [webauthn] What does normalizedParameters actually contain in makeCredential? (Thursday, 23 February)
- Re: [webauthn] What does normalizedParameters actually contain in makeCredential? (Thursday, 23 February)
- Re: [webauthn] What does "If normalizedAlgorithm is empty" mean? (Wednesday, 22 February)
- Re: [webauthn] Track rename issues to maintain consistency (Wednesday, 22 February)
- Re: [webauthn] Track rename issues to maintain consistency (Wednesday, 22 February)
- Re: [webauthn] There is no "current settings object" in algorithm steps that are executing in parallel (Wednesday, 22 February)
- Re: [webauthn] There is no "current settings object" in algorithm steps that are executing in parallel (Wednesday, 22 February)
- Re: [webauthn] Rename Account and ClientData fixes #312 (Wednesday, 22 February)
- Re: [webauthn] Throw "NotFoundError" when internal authenticator is not available or not found (Thursday, 16 February)
- Re: [webauthn] "NotAllowedError" is in WebIDL editors draft but not in WebIDL Level 1 (Thursday, 16 February)
- Re: [webauthn] Spec should not mandate behavior of server (Tuesday, 14 February)
- Re: [webauthn] `rpID` origin relaxation? (Tuesday, 14 February)
- Re: [webauthn] detail-level issues in signature format, attestation format(s), attestation statement (Tuesday, 14 February)
- Re: [webauthn] WebAPI: FIDO Authenticator model - clarifications needed (Tuesday, 14 February)
- Re: [webauthn] Spec should not mandate behavior of server (Tuesday, 14 February)
- Re: [webauthn] Clarify names for crypto algs, e.g. RS256 (Tuesday, 14 February)
- Re: [webauthn] Add clearer definition of API use cases to the spec (Monday, 13 February)
- Re: [webauthn] Clean up attestation, abstract it from UA, fix TPM format, add U2F format (Monday, 13 February)
- Re: [webauthn] `rpID` origin relaxation? (Monday, 13 February)
- Re: [webauthn] overall security considerations section or document (Thursday, 9 February)
- Re: [webauthn] Clean up attestation, abstract it from UA, fix TPM format, add U2F format (Wednesday, 8 February)
- Re: [webauthn] Whitespace around < > in Web IDL is unusual (Thursday, 2 February)
- Re: [webauthn] 5.2.2. Generating a signature (Wednesday, 1 February)
- Re: [webauthn] Add cloud transport option to transport hint (Wednesday, 1 February)
Adam Powers via GitHub
Alexei Czeskis
Alexei Czeskis via GitHub
Angelo Liao
Angelo Liao via GitHub
- [webauthn] Add keyStorage enum to ScopedCredentialOptions (Tuesday, 28 February)
- Re: [webauthn] "NotAllowedError" is in WebIDL editors draft but not in WebIDL Level 1 (Tuesday, 28 February)
- Re: [webauthn] Editorial: use more elaborate variable names (Tuesday, 28 February)
- Re: [webauthn] Add gesture verification parameter to option in both makeC and getA (Friday, 24 February)
- Re: [webauthn] Track rename issues to maintain consistency (Tuesday, 21 February)
- [webauthn] Fetch intergration for WebAuthn API (Tuesday, 21 February)
- [webauthn] Track rename issues to maintain consistency (Friday, 17 February)
- Re: [webauthn] Exception handling in cryptoParameters processing needs to be clarified (Wednesday, 15 February)
- Re: [webauthn] Define what happens when the Document loses focus (Wednesday, 15 February)
- Re: [webauthn] "NotAllowedError" is in WebIDL editors draft but not in WebIDL Level 1 (Wednesday, 15 February)
- [webauthn] Add getAuthenticatorInfo to the Authenticator Model section (Wednesday, 15 February)
Anne van Kesteren via GitHub
Anthony Nadalin
Anthony Nadalin via GitHub
- Re: [webauthn] Should use "RS1" instead of "RSA1_5" (Thursday, 9 February)
- Re: [webauthn] Add clearer definition of API use cases to the spec (Thursday, 9 February)
- Re: [webauthn] "rp" isn't a widely enough known acronym?, should be relyingParting instead? (Thursday, 9 February)
- Re: [webauthn] hashAlg -> hashAlgorithm? (Thursday, 9 February)
- Re: [webauthn] Add cloud transport option to transport hint (Thursday, 9 February)
- Re: [webauthn] overall security considerations section or document (Thursday, 9 February)
- Re: [webauthn] Explainer or more examples? (Thursday, 2 February)
- Closed: [webauthn] Explainer or more examples? (Wednesday, 1 February)
- Re: [webauthn] Explainer or more examples? (Wednesday, 1 February)
- Re: [webauthn] Whitespace around < > in Web IDL is unusual (Wednesday, 1 February)
- Closed: [webauthn] Whitespace around < > in Web IDL is unusual (Wednesday, 1 February)
bifurcation via GitHub
Boris Zbarsky via GitHub
GitHub
- [w3c/webauthn] ce3151: improve ceremony dfn, add Angelo to ACKs (Tuesday, 28 February)
- [w3c/webauthn] 945168: fix build: add comma to refs (Tuesday, 28 February)
- [w3c/webauthn] 93eca4: further polish #357 (Tuesday, 28 February)
- [w3c/webauthn] (Friday, 24 February)
- [w3c/webauthn] f6d7a6: refine user verif and authz gesture, fixes #357, i... (Friday, 24 February)
- [w3c/webauthn] 1a9352: Built by Travis-CI: 22a559f8db50f5d3854bc358c25908... (Thursday, 23 February)
- [w3c/webauthn] f63a36: Bug #256 - Change "relaxing" of RP to the HTML "re... (Thursday, 23 February)
- [w3c/webauthn] 3b2cae: Built by Travis-CI: 0c1a498ecf69e1b0431c2c674020ab... (Wednesday, 22 February)
- [w3c/webauthn] 8eff39: Built by Travis-CI: cc73187dcd84cc70cbbcc095665277... (Wednesday, 22 February)
- [w3c/webauthn] 0ac166: Remove a bunch of unnecessary dfns and anchors. (Wednesday, 22 February)
- [w3c/webauthn] b65aea: updated the reference to FIDO ECDAA (Wednesday, 22 February)
- [w3c/webauthn] (Wednesday, 22 February)
- [w3c/webauthn] b65aea: updated the reference to FIDO ECDAA (Wednesday, 22 February)
- [w3c/webauthn] fced1d: Built by Travis-CI: ce7925cac738fea9a7d81405815aef... (Thursday, 16 February)
- [w3c/webauthn] ce7925: Updates to reflect publication of WD-04 (Thursday, 16 February)
- [w3c/webauthn] 1f470c: Built by Travis-CI: 02c4db116d8119b8a25ed307fdcc1f... (Wednesday, 15 February)
- [w3c/webauthn] 02c4db: Renamed timeoutSeconds to timeoutMilliseconds (#3... (Wednesday, 15 February)
- [w3c/webauthn] ede26e: Built by Travis-CI: 0d9d89e66b3234b325b1d6fa651054... (Wednesday, 15 February)
- [w3c/webauthn] 0d9d89: Highlight the examples as JavaScript and remove no... (Wednesday, 15 February)
- [w3c/webauthn] ed4cd4: Built by Travis-CI: b61bf0df4da547a51aab1dd71c32d6... (Wednesday, 15 February)
- [w3c/webauthn] b61bf0: Make BufferSource parameters actually BufferSource... (Wednesday, 15 February)
- [w3c/webauthn] 75a381: Built by Travis-CI: 9d94e5ff60cd5cff5d134f391c2cd6... (Tuesday, 14 February)
- [w3c/webauthn] 9d94e5: allow u2f attestation to be chained (#342) (Tuesday, 14 February)
- [w3c/webauthn] 0b2748: better text wrapping (Tuesday, 14 February)
- [w3c/webauthn] a2290b: Built by Travis-CI: 233ff105822c1317b015ca776c6fd8... (Tuesday, 14 February)
- [w3c/webauthn] 233ff1: Fix #335: Remove extraneous whitespace in IDL para... (Tuesday, 14 February)
- [w3c/webauthn] 1db4a9: allow u2f attestation to be chained (Tuesday, 14 February)
- [w3c/webauthn] 81e586: Built by Travis-CI: 85db884771c13f7c540db3a58b925c... (Monday, 13 February)
- [w3c/webauthn] (Monday, 13 February)
- [w3c/webauthn] 85db88: Clean up attestation, abstract it from UA, fix TPM... (Monday, 13 February)
- [w3c/webauthn] 50bb26: Clean up attestation CDDL (Monday, 13 February)
- [w3c/webauthn] ce9c18: fix CDDL marker for packed attestation (Monday, 13 February)
- [w3c/webauthn] 2ebdcf: Use CDDL to define attestation and extension struc... (Monday, 13 February)
- [w3c/webauthn] 835e72: Clean up exposition (Sunday, 12 February)
- [w3c/webauthn] feb7d7: Fix linking error (Saturday, 11 February)
- [w3c/webauthn] 1a9371: Built by Travis-CI: fc8f027bb8e0763bd78e0eac52f065... (Friday, 10 February)
- [w3c/webauthn] fc8f02: Update w3c.json (Friday, 10 February)
- [w3c/webauthn] c9b20a: Fix interface/member confusion (Thursday, 9 February)
- [w3c/webauthn] 7642dd: Editorial revisions (Wednesday, 8 February)
- [w3c/webauthn] 4751da: Bikeshed renamed its include folder to boilerplate (Monday, 6 February)
- [w3c/webauthn] 097c8c: Built by Travis-CI: 4751dacb364be3d17ece4ee0ace060... (Monday, 6 February)
- [w3c/webauthn] 4751da: Bikeshed renamed its include folder to boilerplate (Monday, 6 February)
- [w3c/webauthn] 1088d3: Fix bikeshed linking error (Monday, 6 February)
gmandyam via GitHub
Hodges, Jeff
- new issue/PR label: [subtype:CTAP] (Tuesday, 28 February)
- Reviewed PRs #347 & #348 (Friday, 24 February)
- another fairly new spec to be aware of: Infra (from WhatWG) (Wednesday, 22 February)
- Re: 02/22/2017 W3C Web Authentication WG Meeting Agenda (Wednesday, 22 February)
- fyi: Writing Promise-Using Specifications (Wednesday, 22 February)
- CDDL tool (Monday, 13 February)
- Re: updated diffs of state of vgb-u2f-attestation branch (see PR #321) (Monday, 13 February)
- Re: [webauthn] Clean up attestation, abstract it from UA, fix TPM format, add U2F format (Thursday, 9 February)
- updated diffs of state of vgb-u2f-attestation branch (see PR #321) (Wednesday, 8 February)
J.C. Jones via GitHub
Janina Sajka
Jeffrey Yasskin via GitHub
- Re: [webauthn] "NotAllowedError" is in WebIDL editors draft but not in WebIDL Level 1 (Tuesday, 28 February)
- Re: [webauthn] Make makeCredential() more precise. (Tuesday, 28 February)
- [webauthn] Constrain the "reasonable range" of timeouts (Friday, 24 February)
- [webauthn] Define extension client processing more carefully. (Friday, 24 February)
- [webauthn] Specify the set of hash algorithms UAs can select between. (Friday, 24 February)
- Re: [webauthn] Editorial: use more elaborate variable names (Friday, 24 February)
- [webauthn] Explain how Token Binding IDs get associated with an HTML context. (Friday, 24 February)
- Re: [webauthn] What does "If normalizedAlgorithm is empty" mean? (Friday, 24 February)
- Re: [webauthn] Make hashAlg a "recognized algorithm name". (Friday, 24 February)
- Re: [webauthn] The W3C HTML spec is broken, and probably shouldn't be referenced (Wednesday, 22 February)
- Re: [webauthn] The W3C HTML spec is broken, and probably shouldn't be referenced (Wednesday, 22 February)
- [webauthn] Eliminate duplicate terminology (Wednesday, 22 February)
- Re: [webauthn] There is no "current settings object" in algorithm steps that are executing in parallel (Wednesday, 22 February)
- Re: [webauthn] The W3C HTML spec is broken, and probably shouldn't be referenced (Wednesday, 22 February)
- Re: [webauthn] Make hashAlg a "recognized algorithm name". (Friday, 17 February)
- Re: [webauthn] I don't understand how to create a ClientData in makeCredential (Thursday, 16 February)
- Re: [webauthn] I don't understand how to create a ClientData in makeCredential (Wednesday, 15 February)
- Re: [webauthn] I don't understand how to create a ClientData in makeCredential (Wednesday, 15 February)
- Re: [webauthn] Is _rpId_ supposed to look like an origin serialization, or like a hostname? (Wednesday, 15 February)
- Re: [webauthn] Should use "RS1" instead of "RSA1_5" (Tuesday, 14 February)
- [webauthn] Examples show a DOMString passed to challenge, but it's a BufferSource (Tuesday, 14 February)
- Re: [webauthn] Whitespace around < > in Web IDL is unusual (Tuesday, 14 February)
Johan Verrept via GitHub
kpaulh via GitHub
Michael[tm] Smith via GitHub
Mike West via GitHub
Philip Jägenstedt via GitHub
Richard Barnes
Rolf Lindemann via GitHub
- [webauthn] new commits pushed by rlin1 (Wednesday, 22 February)
- Re: [webauthn] updated the reference to FIDO ECDAA (Wednesday, 22 February)
- Re: [webauthn] Add reference to FIDO ECDAA spec. (Wednesday, 22 February)
- Re: [webauthn] Add reference to FIDO ECDAA spec. (Wednesday, 22 February)
- [webauthn] Add reference to FIDO ECDAA spec. (Wednesday, 22 February)
- [webauthn] new commits pushed by rlin1 (Wednesday, 22 February)
- Re: [webauthn] Add clearer definition of API use cases to the spec (Monday, 13 February)
- Re: [webauthn] Add clearer definition of API use cases to the spec (Monday, 13 February)
- Re: [webauthn] Add clearer definition of API use cases to the spec (Monday, 13 February)
- [webauthn] new commits pushed by rlin1 (Monday, 13 February)
Sampath Srinivas
Samuel Weiler
Simon Pieters via GitHub
Tab Atkins Jr. via GitHub
Vijay Bharadwaj via GitHub
- Re: [webauthn] Add "willMakeCredentialWorkWithTheseConstraints()" method to the API (Friday, 24 February)
- Re: [webauthn] User Verification definition needs to be refined (Friday, 24 February)
- Re: [webauthn] Make hashAlg a "recognized algorithm name". (Friday, 24 February)
- Re: [webauthn] Track rename issues to maintain consistency (Wednesday, 22 February)
- [webauthn] new commits pushed by vijaybh (Thursday, 16 February)
- Re: [webauthn] I don't understand how to create a ClientData in makeCredential (Thursday, 16 February)
- Re: [webauthn] Exception handling in cryptoParameters processing needs to be clarified (Thursday, 16 February)
- Re: [webauthn] I don't understand how to create a ClientData in makeCredential (Thursday, 16 February)
- Re: [webauthn] Timeouts should be in ms not seconds (Wednesday, 15 February)
- Closed: [webauthn] Timeouts should be in ms not seconds (Wednesday, 15 February)
- Re: [webauthn] timeoutSeconds options should just be timeout in ms? (Wednesday, 15 February)
- Closed: [webauthn] timeoutSeconds options should just be timeout in ms? (Wednesday, 15 February)
- [webauthn] new commits pushed by vijaybh (Wednesday, 15 February)
- Re: [webauthn] Throw "NotFoundError" when internal authenticator is not available or not found (Wednesday, 15 February)
- Re: [webauthn] Unclear how ClientData is created in makeCredential() (Wednesday, 15 February)
- Re: [webauthn] Clarify wording on authenticator selection (Wednesday, 15 February)
- Re: [webauthn] Add explanation of why the account argument is useful (Wednesday, 15 February)
- Re: [webauthn] detail-level issues in signature format, attestation format(s), attestation statement (Wednesday, 15 February)
- [webauthn] new commits pushed by vijaybh (Wednesday, 15 February)
- [webauthn] new commits pushed by vijaybh (Wednesday, 15 February)
- Closed: [webauthn] Examples show a DOMString passed to challenge, but it's a BufferSource (Wednesday, 15 February)
- Re: [webauthn] Examples show a DOMString passed to challenge, but it's a BufferSource (Tuesday, 14 February)
- Re: [webauthn] Should use "RS1" instead of "RSA1_5" (Tuesday, 14 February)
- Closed: [webauthn] Should use "RS1" instead of "RSA1_5" (Tuesday, 14 February)
- Re: [webauthn] Should use "RS1" instead of "RSA1_5" (Tuesday, 14 February)
- Closed: [webauthn] Add section describing verification of a WebAuthnAssertion (Monday, 13 February)
- Closed: [webauthn] Clarify uses of ClientData (Monday, 13 February)
- Closed: [webauthn] WebAPI: credential binding to a user account (Monday, 13 February)
- Closed: [webauthn] WebAPI: FIDO Authenticator model - clarifications needed (Monday, 13 February)
- Closed: [webauthn] Consider using CDDL (CBOR data definition language) to define CBOR-encoded data structures (Monday, 13 February)
- Closed: [webauthn] "JSON serialization" in makeCredential probably needs to be defined more clearly (Monday, 13 February)
- Closed: [webauthn] RSA credential public key encoding in "attestation data" incorrectly specified? (Monday, 13 February)
- Closed: [webauthn] differentiate assertion signatures and attestation signatures (Monday, 13 February)
- Closed: [webauthn] explicitly denote RSA signature scheme (Monday, 13 February)
- Closed: [webauthn] Can the "attestation" of a WebAuthnAttestation be a non-object? (Monday, 13 February)
- Closed: [webauthn] TPM attestation format spec is incomplete (Monday, 13 February)
- [webauthn] new commits pushed by vijaybh (Monday, 13 February)
- Closed: [webauthn] Why are some of the attestation interfaces [SecureContext] while others are not? (Monday, 13 February)
- Closed: [webauthn] Simplifying attestation, take two (Monday, 13 February)
- Closed: [webauthn] 5.2.2. Generating a signature (Monday, 13 February)
- Closed: [webauthn] Which of the attestation format interfaces are expected to be exposed in UAs? (Monday, 13 February)
- Closed: [webauthn] should authenticator layer send hashed or unhashed rpId to authenticators? (Monday, 13 February)
- Closed: [webauthn] Clarify names for crypto algs, e.g. RS256 (Monday, 13 February)
- Closed: [webauthn] Define a U2F attestation format (Monday, 13 February)
- Closed: [webauthn] certifyinfo needs to be specified (Monday, 13 February)
- Closed: [webauthn] Spec should not mandate behavior of server (Monday, 13 February)
- Closed: [webauthn] fix signature alg names and RFC3447 cite in {#generating-an-attestation-statement} (Monday, 13 February)
- Re: [webauthn] Clean up attestation, abstract it from UA, fix TPM format, add U2F format (Monday, 13 February)
- [webauthn] new commits pushed by vijaybh (Monday, 13 February)
- [webauthn] new commits pushed by vijaybh (Monday, 13 February)
- [webauthn] new commits pushed by vijaybh (Sunday, 12 February)
- [webauthn] new commits pushed by vijaybh (Saturday, 11 February)
- [webauthn] new commits pushed by vijaybh (Thursday, 9 February)
- [webauthn] new commits pushed by vijaybh (Wednesday, 8 February)
- [webauthn] new commits pushed by vijaybh (Monday, 6 February)
- [webauthn] new commits pushed by vijaybh (Monday, 6 February)
- [webauthn] new commits pushed by vijaybh (Monday, 6 February)
- Re: [webauthn] Renamed timeoutSeconds to timeoutMilliseconds (Wednesday, 1 February)
WebAuthnBot via GitHub
- [webauthn] new commits pushed by WebAuthnBot (Thursday, 23 February)
- [webauthn] new commits pushed by WebAuthnBot (Wednesday, 22 February)
- [webauthn] new commits pushed by WebAuthnBot (Wednesday, 22 February)
- [webauthn] new commits pushed by WebAuthnBot (Thursday, 16 February)
- [webauthn] new commits pushed by WebAuthnBot (Wednesday, 15 February)
- [webauthn] new commits pushed by WebAuthnBot (Wednesday, 15 February)
- [webauthn] new commits pushed by WebAuthnBot (Wednesday, 15 February)
- [webauthn] new commits pushed by WebAuthnBot (Tuesday, 14 February)
- [webauthn] new commits pushed by WebAuthnBot (Tuesday, 14 February)
- [webauthn] new commits pushed by WebAuthnBot (Monday, 13 February)
- [webauthn] new commits pushed by WebAuthnBot (Friday, 10 February)
- [webauthn] new commits pushed by WebAuthnBot (Monday, 6 February)
Wendy Seltzer via GitHub
Yaron Sheffer via GitHub
Last message date: Tuesday, 28 February 2017 23:52:57 UTC