[webauthn] 5.2.2. Generating a signature from Jakob Ehrensvard via GitHub on 2017-01-26 (public-webauthn@w3.org from January 2017)

From: Jakob Ehrensvard via GitHub <sysbot+gh@w3.org>
Date: Thu, 26 Jan 2017 00:47:39 +0000
To: public-webauthn@w3.org
Message-ID: <issues.opened-203265767-1485391657-sysbot+gh@w3.org>

jehrensvard has just created a new issue for 
https://github.com/w3c/webauthn:

== 5.2.2. Generating a signature ==
I just noticed the following in section 5.2.2:

A raw cryptographic signature must assert the integrity of both the 
client data and the authenticator data. Thus, an authenticator SHALL 
compute a signature over the concatenation of the authenticatorData 
and the clientDataHash.

It may go without saying, but for the sake of clarity and consistency,
 I believe the wording should be:

/.../ compute a signature over the SHA256 HASH OF THE concatenation of
 the authenticatorData /.../




Please view or discuss this issue at 
https://github.com/w3c/webauthn/issues/332 using your GitHub account

Received on Thursday, 26 January 2017 00:47:47 UTC