[webauthn] Pull Request: Add privacy consideration about terminating getAssertion early

emlun has just submitted a new pull request for https://github.com/w3c/webauthn:

== Add privacy consideration about terminating getAssertion early ==
Related issues: #184, #204 . Loosely related: #140 .

This adds a privacy consideration note to [§5.1.4. Use an existing credential to make an assertion][get] about the privacy implications of terminating before the timer expires.

The PR also includes some language changes to the waiting condition in both [§5.1.3. Create a new credential][create] and [§5.1.4. Use an existing credential to make an assertion][get] which are needed to make the privacy consideration text meaningful, and which were probably already intended.

[create]: https://w3c.github.io/webauthn/#createCredential
[get]: https://w3c.github.io/webauthn/#getAssertion


See https://github.com/w3c/webauthn/pull/687

Received on Monday, 13 November 2017 17:16:19 UTC