[webauthn] Pull Request: Add privacy consideration about terminating getAssertion early from Emil Lundberg via GitHub on 2017-11-13 (public-webauthn@w3.org from November 2017)

From: Emil Lundberg via GitHub <sysbot+gh@w3.org>
Date: Mon, 13 Nov 2017 17:16:12 +0000
To: public-webauthn@w3.org
Message-ID: <pull_request.opened-152296666-1510593370-sysbot+gh@w3.org>

emlun has just submitted a new pull request for https://github.com/w3c/webauthn:

== Add privacy consideration about terminating getAssertion early ==
Related issues: #184, #204 . Loosely related: #140 .

This adds a privacy consideration note to [§5.1.4. Use an existing credential to make an assertion][get] about the privacy implications of terminating before the timer expires.

The PR also includes some language changes to the waiting condition in both [§5.1.3. Create a new credential][create] and [§5.1.4. Use an existing credential to make an assertion][get] which are needed to make the privacy consideration text meaningful, and which were probably already intended.

[create]: https://w3c.github.io/webauthn/#createCredential
[get]: https://w3c.github.io/webauthn/#getAssertion


See https://github.com/w3c/webauthn/pull/687

Received on Monday, 13 November 2017 17:16:19 UTC