Re: [webauthn] Constrain the "reasonable range" of timeouts from =JeffH via GitHub on 2017-03-02 (public-webauthn@w3.org from March 2017)

From: =JeffH via GitHub <sysbot+gh@w3.org>
Date: Thu, 02 Mar 2017 16:35:47 +0000
To: public-webauthn@w3.org
Message-ID: <issue_comment.created-283705172-1488472545-sysbot+gh@w3.org>

@jcjones says in 
https://github.com/w3c/webauthn/pull/347#discussion_r103741955:
Straw man: I chose [15,120] seconds as the range for timeouts in the 
first Firefox implementation. Under 15 seconds seems too short to dig 
out a security key, and making things blink for more than two minutes 
seemed cruel.

-- 
GitHub Notification of comment by equalsJeffH
Please view or discuss this issue at 
https://github.com/w3c/webauthn/issues/364#issuecomment-283705172 
using your GitHub account

Received on Thursday, 2 March 2017 16:35:57 UTC