W3C home > Mailing lists > Public > public-webauthn@w3.org > March 2017

Re: [webauthn] daaKey format? (ECPointToB -> ECPoint2ToB)

From: Rolf Lindemann via GitHub <sysbot+gh@w3.org>
Date: Tue, 21 Mar 2017 11:11:44 +0000
To: public-webauthn@w3.org
Message-ID: <issue_comment.created-288047116-1490094703-sysbot+gh@w3.org>
I think we have two options here
a) directly encoding the full ECDAA Issuer public key here, in this case it would be ECPoint2ToB result or
b) use the c value of the public key (as defined in section 3.3 step 3.5) in which case it would be the result of BigNumberToB.

using b) is shorter (less bytes) and avoids accidentally "forgetting" to verify the ECDAA Issuer public key to the trust store.  So I prefer option b at this time - other opinions welcome.

-- 
GitHub Notification of comment by rlin1
Please view or discuss this issue at https://github.com/w3c/webauthn/issues/385#issuecomment-288047116 using your GitHub account
Received on Tuesday, 21 March 2017 11:11:55 UTC

This archive was generated by hypermail 2.4.0 : Tuesday, 5 July 2022 07:26:25 UTC