public-webauthn@w3.org from October 2017 by subject

10/03/2017 W3C Web Authentication WG Meeting Agenca

10/18/2017 W3C Web Authentication WG Meeting Agenda

10/25/2017 W3C Web Authentication WG Meeting Agenda

@akshayku needs to be added to w3c github team(s) ?

[w3c/webauthn]

[w3c/webauthn] 004f90: Built by Travis-CI: 579f6cfe6247606ca7e1ffb455ad99...

[w3c/webauthn] 018eeb: Built by Travis-CI: f94ed9180b06571bc0af59d605f56f...

[w3c/webauthn] 01aa32: clarified the ECDAA signing procedure. Close #591 ...

[w3c/webauthn] 089c10: Number the steps in the authenticator operations.

[w3c/webauthn] 0cda62: finish (one hopes) work on #discover-from-external...

[w3c/webauthn] 121c70: update CTAP ref with correct authors and URL

[w3c/webauthn] 1674ca: updated the definition of authenticator (#607)

[w3c/webauthn] 17539f: Add Vagrantfile for a VM with bikeshed installed

[w3c/webauthn] 1a2857: Built by Travis-CI: 408ef307c90c3f80f7c06405b73225...

[w3c/webauthn] 1b4c24: Update to newest bikeshed state

[w3c/webauthn] 215c75: Update index.bs

[w3c/webauthn] 25b337: Built by Travis-CI: f6c9ed6d04ae0d695a6bf2659c2144...

[w3c/webauthn] 2d3732: Require authenticators to implement the signature ...

[w3c/webauthn] 2eb125: Built by Travis-CI: bcb5c110968ae4d3c410a62440b254...

[w3c/webauthn] 2ebc43: Built by Travis-CI: d89c5031770f673288c1f5cb320adf...

[w3c/webauthn] 3d771c: add missing @@EDITOR-ANCHOR-01A

[w3c/webauthn] 3e86e7: Fix #577 - CDDL for attStmtTemplate is ambiguous

[w3c/webauthn] 484b31: Built by Travis-CI: 01aa320dfad02e768dbfdb2071191c...

[w3c/webauthn] 490eea: Link attestation statement and -format in §6.1 ste...

[w3c/webauthn] 4bb24b: Link "extension identifier" as requested in #602

[w3c/webauthn] 4ca5f4: Built by Travis-CI: 527aaf67e45838baba4d325cf12675...

[w3c/webauthn] 4ef24c: Built by Travis-CI: 6563f2209fba7bfd695080f15800ca...

[w3c/webauthn] 523962: updated according to comment

[w3c/webauthn] 527aaf: Add a Relying Party conformance class. (#604)

[w3c/webauthn] 57d370: Adding a choice for RP to express preferences for ...

[w3c/webauthn] 5b5467: Built by Travis-CI: 4bb24bfe5ddfd676eafd408efb32f9...

[w3c/webauthn] 5c8dc4: fix #657: where does return value of PublicKeyCred...

[w3c/webauthn] 5e4278: Built by Travis-CI: 97e8af01a1115f589ec21272e258a7...

[w3c/webauthn] 63e569: Built by Travis-CI: bf41e8ed5cf0e0fe7a2696e6bd82bf...

[w3c/webauthn] 6563f2: Also update bikshed-include to fix the double-Abst...

[w3c/webauthn] 66ebb5: Built by Travis-CI: ee174c2aa78b77ffb8de5b9d758333...

[w3c/webauthn] 67a1a3: updated the definition of authenticator

[w3c/webauthn] 6b6d14: Built by Travis-CI: e74d8c4da2813559086fa32a28bdc6...

[w3c/webauthn] 6e0716: Fix #574 - Change language for Create and Get to s...

[w3c/webauthn] 6e8b3d: Built by Travis-CI: 1674caa4663e5fa1e3635d48be8b78...

[w3c/webauthn] 6f152d: Built by Travis-CI: b0a205bc0010df59ab4657f83429b3...

[w3c/webauthn] 6faf3e: Built by Travis-CI: c16fafd18def10492d29162d1a7daa...

[w3c/webauthn] 7a7f5d: actually improve #254, and fix #661

[w3c/webauthn] 7e0603: rm 'the bytes of'

[w3c/webauthn] 7e99b6: Built by Travis-CI: e9a9c33d30505f9ab9860a3f292cd1...

[w3c/webauthn] 81a892: correct bugs in prior merge conflict resolution, d...

[w3c/webauthn] 8adc6b: Built by Travis-CI: 641949fd27a21a929fd17f2d3b95be...

[w3c/webauthn] 8b23fb: Rewrite Generating an Attestation Object as an alg...

[w3c/webauthn] 9598e1: Relaxing user prompt requirements in certain cases

[w3c/webauthn] 95fd62: Fix User.ID example

[w3c/webauthn] 97e8af: Rewrite the "make an assertion" introduction to cl...

[w3c/webauthn] 997e74: Fix [=RP=] links that should be [=[RP]=].

[w3c/webauthn] 9a1c34: Give authData and attestationData fields formal na...

[w3c/webauthn] 9a5421: Name the parameters and variables in authenticator...

[w3c/webauthn] 9d4b17: Built by Travis-CI: e65e43ed53dcdb411d34a9d75decfc...

[w3c/webauthn] a17ce1: Built by Travis-CI: 0cae38154c59cf4760e7dfed00f2c4...

[w3c/webauthn] a64ce6: clarified the ECDAA signing procedure. Close #591

[w3c/webauthn] a6c502: manually resolved merge conflicts

[w3c/webauthn] a742a4: fix typo

[w3c/webauthn] a74827: Fix #569 - Add Exposed to all WebIDL interfaces

[w3c/webauthn] a8799a: re- fix #466 (due to merge-from-master), fix #536

[w3c/webauthn] ac8908: Plumb User ID through

[w3c/webauthn] b0cdf6: Built by Travis-CI: 089c10e16bdcda0bd75db1d7f1d6a2...

[w3c/webauthn] b22681: Built by Travis-CI: f1f54951d5e5bffc54bbaf971ef72f...

[w3c/webauthn] b335df: fixed indent issue

[w3c/webauthn] b46c2a: Built by Travis-CI: 06d5468e5b70ff5476e87188941e87...

[w3c/webauthn] b63caf: Built by Travis-CI: 8b23fb85f33c03e0420fb8182d9d77...

[w3c/webauthn] b7613f: Fix #551 - Define a Store method for PublicKeyCred...

[w3c/webauthn] b8c602: Fix #624 - Change PublicKeyCredential.clientExtens...

[w3c/webauthn] b9575e: Fix #561

[w3c/webauthn] c16faf: remove not needed closing bracket

[w3c/webauthn] c4b96d: Name the parameters and variables in authenticator...

[w3c/webauthn] c8ab7c: Built by Travis-CI: 2d3732b659a0b4fcd439097137a261...

[w3c/webauthn] d0a010: Fix #618 - Make PublicKeyCredential.isPlatformAuth...

[w3c/webauthn] d4ee2e: Built by Travis-CI: 1b4c2449d471358600fb1b61a73e52...

[w3c/webauthn] d7fab5: Built by Travis-CI: 997e749a47c656e2d5671dcbd2d27d...

[w3c/webauthn] d89c50: Sign counter alg clarification [see issue #507] (#...

[w3c/webauthn] da433e: Built by Travis-CI: 23b91fbb455dd3cc84e071c0dab50a...

[w3c/webauthn] dab729: applied latest change 4a376bf198f839abe123e5e32458...

[w3c/webauthn] db1a3a: Update index.bs

[w3c/webauthn] e65e43: Use || uniformly for concatenation. (#615)

[w3c/webauthn] e74d8c: Fix #609: Formally define User Handle (#616)

[w3c/webauthn] e9a9c3: Fix #560: ensure #registering-a-new-credential ste...

[w3c/webauthn] eb401b: Remove user agent getting user consent sentence (#...

[w3c/webauthn] ed0286: Built by Travis-CI: 6594dc74bcd89bcfd218d307e054f0...

[w3c/webauthn] ef0fe0: resolved conflicts

[w3c/webauthn] ef5803: Built by Travis-CI: b8c60278ad53479d03a2247e1360c3...

[w3c/webauthn] f1f549: fixup algs contd 3 (#498)

[w3c/webauthn] f34775: Built by Travis-CI: 670ecb37e810efaa527f2068685315...

[w3c/webauthn] f56c80: fix line-indentation make BS happy

[w3c/webauthn] f8acad: fix indent error

[w3c/webauthn] f94ed9: update CTAP ref with correct authors and URL (#638...

[w3c/webauthn] ffba42: Built by Travis-CI: 394c9c0b369232a9004f71e3638fcc...

[w3c/webauthn] ffcc0d: Built by Travis-CI: fff646941a6b79ced149e1d42bc2f0...

[webauthn] #getAssertion alg needs to pass authenticator selection requirements to authenticatorGetAssertion operation

[webauthn] #registering-a-new-credential step 10 breakage

[webauthn] .store() is confusing

[webauthn] 5.6. Authentication Extensions name confusing

[webauthn] `AuthenticationExtensions` typedef name is confusing; also there are issues with its description

[webauthn] Add a Relying Party conformance class.

[webauthn] Adding a choice for RP to express preferences for attestation types

[webauthn] address needs of various webauthn spec audiences

[webauthn] Allow hot-plugged authenticators?

[webauthn] Allow RPs to choose between "required" and "optional" attestation in credentials.create()

[webauthn] Android SafetyNet Attestation lacks information on authenticator provenance

[webauthn] Ask for tests for normative changes in CONTRIBUTING.md

[webauthn] Authenticator session

[webauthn] Authenticator session not possible for BLE

[webauthn] authenticatorCancel seems like it can cancel too much

[webauthn] authenticatorMakeCredential operation credential filtering

[webauthn] authenticatorMakeCredential: Only exclude CredIDs matching the RPID

[webauthn] basicIntegrity in SafetyNet documentation not sufficiently defined

[webauthn] Change user.id examples to binary encoding.

[webauthn] clarified the ECDAA signing procedure. Close #591

[webauthn] clarify "authenticator model": RPs may perform feature-based authenticator selection

[webauthn] clarify isPlatformAuthenticatorAvailable's semantics

[webauthn] clientExtensionResults attribute cannot be a Record type

[webauthn] Consider dropping requirement for TUP on create()

[webauthn] Credential ID uniqueness expectations are inconsistent/vague

[webauthn] credentials.get() should have optional parameters for userVerification and userPresence

[webauthn] CTAP/U2F doesn't status indicating the user cancelled the operation

[webauthn] ctsprofilematch in SafetyNet documentation not sufficiently defined

[webauthn] Define how to verify the attestation certificate

[webauthn] Define Public Key Credential Source and Credential ID.

[webauthn] Define sensible limits for User and RP Entity to be stored on Authenticator as part of create credential

[webauthn] Describe how authenticators unique and find credential sources.

[webauthn] detail-level issues in signature format, attestation format(s), attestation statement

[webauthn] Display name content rules?

[webauthn] Examples should include non-ASCII [editorial]

[webauthn] Extension identifiers in examples are inconsistent with registered identifiers

[webauthn] Extensions need to define how their parameters convert to/from CBOR

[webauthn] Feature request: Add API for android finger print reader

[webauthn] FIDO U2F Attestation Statement Format doesn't say what to do with AAGUID

[webauthn] FIDO U2F Attestation Statement Format doesn't say what to do with Counter

[webauthn] First factor authentication selection

[webauthn] First factor authenticator selection

[webauthn] fix #254: credman alignment: update #getAssertion section a la PR #498

[webauthn] Fix #393: Rename attestation data to attested credential data

[webauthn] Fix #560

[webauthn] Fix #560: ensure #registering-a-new-credential step 10 and the inputs to all attStmt types' verification procedures match

[webauthn] Fix #561

[webauthn] Fix #569 - Add Exposed to all WebIDL interfaces

[webauthn] Fix #574 - Change language for Create and Get to support hotplugging

[webauthn] Fix #609: Formally define User Handle

[webauthn] Fix #618 - Make PublicKeyCredential.isPlatformAuthenticatorAvailable static

[webauthn] Fix #622: Clarify PublicKeyCredentialEntity name descriptions

[webauthn] Fix #624 - Change PublicKeyCredential.clientExtensionResults to an operation

[webauthn] fix #657: where does return value of PublicKeyCredential.getClientExtensionResults() come from?

[webauthn] fixup algs contd 3

[webauthn] further details for authenticatorCancel operation

[webauthn] How should the browser handle CredentialMediationRequirement for public key credentials?

[webauthn] impl guidelines for signature counter

[webauthn] include public key in result from create()

[webauthn] Incorrect feedback link in 20160531 WD

[webauthn] isPlatformAuthenticatorAvailable's examples imply it should be static

[webauthn] isPlatformAuthenticatorAvailable() timeout really 10 minutes?

[webauthn] Key types and algorithms are confusing

[webauthn] keyType: "public-key" is superfluous

[webauthn] Make create() and get() abortable

[webauthn] Make packed attestation format Privacy CA-friendly

[webauthn] Merged Pull Request: clarified the ECDAA signing procedure. Close #591

[webauthn] Merged Pull Request: Fix #393: Rename attestation data to attested credential data

[webauthn] Merged Pull Request: Fix #560: ensure #registering-a-new-credential step 10 and the inputs to all attStmt types' verification procedures match

[webauthn] Merged Pull Request: Fix #561

[webauthn] Merged Pull Request: fix #657: where does return value of PublicKeyCredential.getClientExtensionResults() come from?

[webauthn] Merged Pull Request: fixup algs contd 3

[webauthn] Name the parameters and variables in authenticatorGetAssertion.

[webauthn] Name the parameters and variables in authenticatorMakeCredential.

[webauthn] Need to fix android key attestation verification procedure

[webauthn] Need to remove the term "authentication key" in self attestation description

[webauthn] new commits pushed by balfanz

[webauthn] new commits pushed by christiaanbrand

[webauthn] new commits pushed by emlun

[webauthn] new commits pushed by equalsJeffH

[webauthn] new commits pushed by jcjones

[webauthn] new commits pushed by jyasskin

[webauthn] new commits pushed by rlin1

[webauthn] new commits pushed by WebAuthnBot

[webauthn] No way to select an intended authenticator during authentication with attachment info

[webauthn] Not clear what to do with cross platform authenticators during make-an-assertion step

[webauthn] Not necessary to pass AuthenticatorSelectionCriteria members to authenticatorMakeCredential()

[webauthn] Nothing required in PublicKeyCredentialEntity

[webauthn] Only exclude CredIDs matching the RPID

[webauthn] Packed and U2F Attestation Statements' verifications don't differentiate between Basic and Privacy CA Attestation Types

[webauthn] parameter lists in #createCredential and #op-make-cred do not match

[webauthn] Per TCG: "privacy CA" is now "Attestation CA"

[webauthn] Plumb User ID through

[webauthn] preventSilentAccess() -- what effect does calling it have?

[webauthn] Privacy CA not defined or linked

[webauthn] Privacy Considerations should describe risks of storing userID/displayName in "second-factor" authenticators

[webauthn] Public Key Infrastructures and Web Authentication

[webauthn] PublicKeyCredentialUserEntity difference between name, displayName and id not clear

[webauthn] Pull Request: Ask for tests for normative changes in CONTRIBUTING.md

[webauthn] Pull Request: fix #254: credman alignment: update #getAssertion section a la PR #498

[webauthn] Pull Request: Fix #561

[webauthn] Pull Request: Fix #574 - Change language for Create and Get to support hotplugging

[webauthn] Pull Request: Fix #622: Clarify PublicKeyCredentialEntity name descriptions

[webauthn] Pull Request: fix #657: where does return value of PublicKeyCredential.getClientExtensionResults() come from?

[webauthn] Pull Request: Master2

[webauthn] Pull Request: Only exclude CredIDs matching the RPID

[webauthn] Pull Request: Update the RP operation section to be "not normative"

[webauthn] Relaxing user prompt requirements in certain cases

[webauthn] Remove [SameObject] from AuthenticatorAssertionResponse.userId

[webauthn] Rename PublicKeyCredentialEntity fields

[webauthn] Require authenticators to implement the signature counter

[webauthn] Restore identifier alignment with CTAP and WD-06

[webauthn] restrict WebAuthentication API to only top level browsing context

[webauthn] revamped [[Create]]() method lacks origin argument

[webauthn] RP guidelines should allow RP to not check attestation

[webauthn] Sign counter alg 507 alternative: optional sig counter

[webauthn] Sign counter alg clarification [see issue #507]

[webauthn] Signature Counter needs to be mandatory in authenticationData

[webauthn] Specify how to handle authenticators that are plugged after registration/signing is requested

[webauthn] technical & terminology issues with PR#558 Plumb User ID through

[webauthn] There is no "current settings object" in algorithm steps that are executing in parallel

[webauthn] Tools: Add Vagrantfile for a VM with bikeshed installed

[webauthn] Transaction authorization extensions are registration and authentication extension?

[webauthn] undefined terms

[webauthn] Update CTAP references

[webauthn] Update definition of Authenticator to make it more similar to FIDO's def

[webauthn] Update the RP operation section to be "not normative"

[webauthn] User Verification Method (uvm) extension incorrectly mentions user verification *index*

[webauthn] WebAuthn available to Workers? aka "silent authentication"

[webauthn] What does "which has no other operations in progress" mean in practice?

[webauthn] where does return value of PublicKeyCredential.getClientExtensionResults() come from?

All issues assigned to milestones

Closed: [webauthn] #registering-a-new-credential step 10 breakage

Closed: [webauthn] [[Create]](options) method does not need to call authenticatorMakeCredential() with separate |rpId|

Closed: [webauthn] authenticatorCancel seems like it can cancel too much

Closed: [webauthn] authenticatorMakeCredential: Only exclude CredIDs matching the RPID

Closed: [webauthn] basicIntegrity in SafetyNet documentation not sufficiently defined

Closed: [webauthn] CDDL for attStmtType is confusing

Closed: [webauthn] Change user.id examples to binary encoding.

Closed: [webauthn] Consider dropping requirement for TUP on create()

Closed: [webauthn] credential ID returned by authenticatorGetAssertion() is optional if allowList has exactly one member

Closed: [webauthn] ctsprofilematch in SafetyNet documentation not sufficiently defined

Closed: [webauthn] Define how to verify the attestation certificate

Closed: [webauthn] Description of attestation signature generation for ECDAA needs to be fixed.

Closed: [webauthn] ensure #registering-a-new-credential step 10 and the inputs to all attStmt types' verification procedures match

Closed: [webauthn] Feature request: Add API for android finger print reader

Closed: [webauthn] FIDO U2F Attestation Statement Format doesn't say what to do with AAGUID

Closed: [webauthn] FIDO U2F Attestation Statement Format doesn't say what to do with Counter

Closed: [webauthn] First factor authenticator selection

Closed: [webauthn] include public key in result from create()

Closed: [webauthn] Incorrect feedback link in 20160531 WD

Closed: [webauthn] isPlatformAuthenticatorAvailable's examples imply it should be static

Closed: [webauthn] Key types and algorithms are confusing

Closed: [webauthn] Make packed attestation format Privacy CA-friendly

Closed: [webauthn] No way to select an intended authenticator during authentication with attachment info

Closed: [webauthn] Not clear what's executed in parallel in Section 4.1.3, Step 24.3

Closed: [webauthn] parameter lists in #createCredential and #op-make-cred do not match

Closed: [webauthn] Public Key Infrastructures and Web Authentication

Closed: [webauthn] rename "attestation data" to be "attested credential"

Closed: [webauthn] Rename PublicKeyCredentialEntity fields

Closed: [webauthn] Signature Counter needs to be mandatory in authenticationData

Closed: [webauthn] Specify how to handle authenticators that are plugged after registration/signing is requested

Closed: [webauthn] technical & terminology issues with PR#558 Plumb User ID through

Closed: [webauthn] Update CTAP references

Closed: [webauthn] user id should be returned in get()

Closed: [webauthn] where does return value of PublicKeyCredential.getClientExtensionResults() come from?

diffs of webauthn proto-WD-07 from WD-06

Even newer W3C Web AuthN dial-in for 10/18

FIDO2 CTAP Specification Review Draft

Fwd: Web Authentication Working Group re-charter approved; Call for participation

Invitation: W3C WebAuthn review @ Wed Oct 11, 2017 10:00 - 17:50 (PDT) (public-webauthn@w3.org)

Issue comment editing turned off?

Meeting at TPAC with Web of Things

Minutes from the 10/11/2017 Face to Face Meeting `

New W3C Web AuthN Meeting Coordinates

PR #665 update by JeffH needs review

PR#614 reviewed: Fix #393: Rename attestation data to attested credential data

services.w3.org/github-notify-ml does not fwd pull_request.{opened,closed} events

UI for webauthn with origins

W3C Face-to-Face meeting

W3C WebAuthn Face to Face Meeting

WebEx for TPAC

Last message date: Tuesday, 31 October 2017 21:27:20 UTC