10/03/2017 W3C Web Authentication WG Meeting Agenca
10/18/2017 W3C Web Authentication WG Meeting Agenda
10/25/2017 W3C Web Authentication WG Meeting Agenda
@akshayku needs to be added to w3c github team(s) ?
[w3c/webauthn]
[w3c/webauthn] 004f90: Built by Travis-CI: 579f6cfe6247606ca7e1ffb455ad99...
[w3c/webauthn] 018eeb: Built by Travis-CI: f94ed9180b06571bc0af59d605f56f...
[w3c/webauthn] 01aa32: clarified the ECDAA signing procedure. Close #591 ...
[w3c/webauthn] 089c10: Number the steps in the authenticator operations.
[w3c/webauthn] 0cda62: finish (one hopes) work on #discover-from-external...
[w3c/webauthn] 121c70: update CTAP ref with correct authors and URL
[w3c/webauthn] 1674ca: updated the definition of authenticator (#607)
- GitHub (Wednesday, 11 October)
[w3c/webauthn] 17539f: Add Vagrantfile for a VM with bikeshed installed
[w3c/webauthn] 1a2857: Built by Travis-CI: 408ef307c90c3f80f7c06405b73225...
[w3c/webauthn] 1b4c24: Update to newest bikeshed state
[w3c/webauthn] 215c75: Update index.bs
[w3c/webauthn] 25b337: Built by Travis-CI: f6c9ed6d04ae0d695a6bf2659c2144...
[w3c/webauthn] 2d3732: Require authenticators to implement the signature ...
- GitHub (Wednesday, 11 October)
[w3c/webauthn] 2eb125: Built by Travis-CI: bcb5c110968ae4d3c410a62440b254...
- GitHub (Wednesday, 25 October)
[w3c/webauthn] 2ebc43: Built by Travis-CI: d89c5031770f673288c1f5cb320adf...
- GitHub (Wednesday, 11 October)
[w3c/webauthn] 3d771c: add missing @@EDITOR-ANCHOR-01A
- GitHub (Wednesday, 11 October)
[w3c/webauthn] 3e86e7: Fix #577 - CDDL for attStmtTemplate is ambiguous
[w3c/webauthn] 484b31: Built by Travis-CI: 01aa320dfad02e768dbfdb2071191c...
[w3c/webauthn] 490eea: Link attestation statement and -format in §6.1 ste...
[w3c/webauthn] 4bb24b: Link "extension identifier" as requested in #602
[w3c/webauthn] 4ca5f4: Built by Travis-CI: 527aaf67e45838baba4d325cf12675...
[w3c/webauthn] 4ef24c: Built by Travis-CI: 6563f2209fba7bfd695080f15800ca...
[w3c/webauthn] 523962: updated according to comment
- GitHub (Wednesday, 11 October)
[w3c/webauthn] 527aaf: Add a Relying Party conformance class. (#604)
[w3c/webauthn] 57d370: Adding a choice for RP to express preferences for ...
[w3c/webauthn] 5b5467: Built by Travis-CI: 4bb24bfe5ddfd676eafd408efb32f9...
[w3c/webauthn] 5c8dc4: fix #657: where does return value of PublicKeyCred...
- GitHub (Wednesday, 25 October)
- GitHub (Wednesday, 25 October)
[w3c/webauthn] 5e4278: Built by Travis-CI: 97e8af01a1115f589ec21272e258a7...
[w3c/webauthn] 63e569: Built by Travis-CI: bf41e8ed5cf0e0fe7a2696e6bd82bf...
[w3c/webauthn] 6563f2: Also update bikshed-include to fix the double-Abst...
[w3c/webauthn] 66ebb5: Built by Travis-CI: ee174c2aa78b77ffb8de5b9d758333...
[w3c/webauthn] 67a1a3: updated the definition of authenticator
[w3c/webauthn] 6b6d14: Built by Travis-CI: e74d8c4da2813559086fa32a28bdc6...
[w3c/webauthn] 6e0716: Fix #574 - Change language for Create and Get to s...
[w3c/webauthn] 6e8b3d: Built by Travis-CI: 1674caa4663e5fa1e3635d48be8b78...
- GitHub (Wednesday, 11 October)
[w3c/webauthn] 6f152d: Built by Travis-CI: b0a205bc0010df59ab4657f83429b3...
- GitHub (Wednesday, 11 October)
[w3c/webauthn] 6faf3e: Built by Travis-CI: c16fafd18def10492d29162d1a7daa...
- GitHub (Wednesday, 11 October)
[w3c/webauthn] 7a7f5d: actually improve #254, and fix #661
[w3c/webauthn] 7e0603: rm 'the bytes of'
- GitHub (Wednesday, 11 October)
[w3c/webauthn] 7e99b6: Built by Travis-CI: e9a9c33d30505f9ab9860a3f292cd1...
[w3c/webauthn] 81a892: correct bugs in prior merge conflict resolution, d...
[w3c/webauthn] 8adc6b: Built by Travis-CI: 641949fd27a21a929fd17f2d3b95be...
[w3c/webauthn] 8b23fb: Rewrite Generating an Attestation Object as an alg...
- GitHub (Wednesday, 11 October)
[w3c/webauthn] 9598e1: Relaxing user prompt requirements in certain cases
- GitHub (Thursday, 12 October)
- GitHub (Wednesday, 11 October)
[w3c/webauthn] 95fd62: Fix User.ID example
[w3c/webauthn] 97e8af: Rewrite the "make an assertion" introduction to cl...
[w3c/webauthn] 997e74: Fix [=RP=] links that should be [=[RP]=].
- GitHub (Wednesday, 11 October)
[w3c/webauthn] 9a1c34: Give authData and attestationData fields formal na...
[w3c/webauthn] 9a5421: Name the parameters and variables in authenticator...
[w3c/webauthn] 9d4b17: Built by Travis-CI: e65e43ed53dcdb411d34a9d75decfc...
- GitHub (Wednesday, 11 October)
[w3c/webauthn] a17ce1: Built by Travis-CI: 0cae38154c59cf4760e7dfed00f2c4...
[w3c/webauthn] a64ce6: clarified the ECDAA signing procedure. Close #591
[w3c/webauthn] a6c502: manually resolved merge conflicts
[w3c/webauthn] a742a4: fix typo
- GitHub (Wednesday, 11 October)
[w3c/webauthn] a74827: Fix #569 - Add Exposed to all WebIDL interfaces
[w3c/webauthn] a8799a: re- fix #466 (due to merge-from-master), fix #536
[w3c/webauthn] ac8908: Plumb User ID through
[w3c/webauthn] b0cdf6: Built by Travis-CI: 089c10e16bdcda0bd75db1d7f1d6a2...
[w3c/webauthn] b22681: Built by Travis-CI: f1f54951d5e5bffc54bbaf971ef72f...
[w3c/webauthn] b335df: fixed indent issue
- GitHub (Wednesday, 11 October)
[w3c/webauthn] b46c2a: Built by Travis-CI: 06d5468e5b70ff5476e87188941e87...
[w3c/webauthn] b63caf: Built by Travis-CI: 8b23fb85f33c03e0420fb8182d9d77...
- GitHub (Wednesday, 11 October)
[w3c/webauthn] b7613f: Fix #551 - Define a Store method for PublicKeyCred...
[w3c/webauthn] b8c602: Fix #624 - Change PublicKeyCredential.clientExtens...
- GitHub (Thursday, 19 October)
- GitHub (Wednesday, 18 October)
[w3c/webauthn] b9575e: Fix #561
[w3c/webauthn] c16faf: remove not needed closing bracket
- GitHub (Wednesday, 11 October)
[w3c/webauthn] c4b96d: Name the parameters and variables in authenticator...
[w3c/webauthn] c8ab7c: Built by Travis-CI: 2d3732b659a0b4fcd439097137a261...
- GitHub (Wednesday, 11 October)
[w3c/webauthn] d0a010: Fix #618 - Make PublicKeyCredential.isPlatformAuth...
[w3c/webauthn] d4ee2e: Built by Travis-CI: 1b4c2449d471358600fb1b61a73e52...
[w3c/webauthn] d7fab5: Built by Travis-CI: 997e749a47c656e2d5671dcbd2d27d...
- GitHub (Wednesday, 11 October)
[w3c/webauthn] d89c50: Sign counter alg clarification [see issue #507] (#...
- GitHub (Wednesday, 11 October)
[w3c/webauthn] da433e: Built by Travis-CI: 23b91fbb455dd3cc84e071c0dab50a...
[w3c/webauthn] dab729: applied latest change 4a376bf198f839abe123e5e32458...
[w3c/webauthn] db1a3a: Update index.bs
[w3c/webauthn] e65e43: Use || uniformly for concatenation. (#615)
- GitHub (Wednesday, 11 October)
[w3c/webauthn] e74d8c: Fix #609: Formally define User Handle (#616)
[w3c/webauthn] e9a9c3: Fix #560: ensure #registering-a-new-credential ste...
[w3c/webauthn] eb401b: Remove user agent getting user consent sentence (#...
[w3c/webauthn] ed0286: Built by Travis-CI: 6594dc74bcd89bcfd218d307e054f0...
[w3c/webauthn] ef0fe0: resolved conflicts
[w3c/webauthn] ef5803: Built by Travis-CI: b8c60278ad53479d03a2247e1360c3...
- GitHub (Wednesday, 18 October)
[w3c/webauthn] f1f549: fixup algs contd 3 (#498)
[w3c/webauthn] f34775: Built by Travis-CI: 670ecb37e810efaa527f2068685315...
[w3c/webauthn] f56c80: fix line-indentation make BS happy
[w3c/webauthn] f8acad: fix indent error
[w3c/webauthn] f94ed9: update CTAP ref with correct authors and URL (#638...
[w3c/webauthn] ffba42: Built by Travis-CI: 394c9c0b369232a9004f71e3638fcc...
[w3c/webauthn] ffcc0d: Built by Travis-CI: fff646941a6b79ced149e1d42bc2f0...
[webauthn] #getAssertion alg needs to pass authenticator selection requirements to authenticatorGetAssertion operation
- Akshay Kumar via GitHub (Thursday, 26 October)
- Emil Lundberg via GitHub (Thursday, 26 October)
- Akshay Kumar via GitHub (Thursday, 26 October)
- Emil Lundberg via GitHub (Thursday, 26 October)
- Akshay Kumar via GitHub (Wednesday, 25 October)
- J.C. Jones via GitHub (Wednesday, 25 October)
- Emil Lundberg via GitHub (Wednesday, 25 October)
- Emil Lundberg via GitHub (Wednesday, 25 October)
- Alexei Czeskis via GitHub (Tuesday, 24 October)
- Alexei Czeskis via GitHub (Tuesday, 24 October)
- Anthony Nadalin via GitHub (Monday, 16 October)
- =JeffH via GitHub (Friday, 13 October)
[webauthn] #registering-a-new-credential step 10 breakage
[webauthn] .store() is confusing
[webauthn] 5.6. Authentication Extensions name confusing
[webauthn] `AuthenticationExtensions` typedef name is confusing; also there are issues with its description
[webauthn] Add a Relying Party conformance class.
[webauthn] Adding a choice for RP to express preferences for attestation types
- Emil Lundberg via GitHub (Thursday, 19 October)
- Akshay Kumar via GitHub (Wednesday, 18 October)
- Emil Lundberg via GitHub (Wednesday, 18 October)
- Emil Lundberg via GitHub (Wednesday, 18 October)
- Adam Langley via GitHub (Wednesday, 18 October)
- Akshay Kumar via GitHub (Tuesday, 17 October)
- Anthony Nadalin via GitHub (Tuesday, 17 October)
- Adam Langley via GitHub (Tuesday, 17 October)
- Akshay Kumar via GitHub (Monday, 16 October)
- gmandyam via GitHub (Monday, 16 October)
- Anthony Nadalin via GitHub (Monday, 16 October)
[webauthn] address needs of various webauthn spec audiences
[webauthn] Allow hot-plugged authenticators?
[webauthn] Allow RPs to choose between "required" and "optional" attestation in credentials.create()
- =JeffH via GitHub (Wednesday, 18 October)
- Emil Lundberg via GitHub (Wednesday, 18 October)
- John Bradley via GitHub (Thursday, 12 October)
- balfanz via GitHub (Thursday, 12 October)
- John Bradley via GitHub (Thursday, 12 October)
- Ki-Eun Shin via GitHub (Thursday, 12 October)
- =JeffH via GitHub (Wednesday, 11 October)
- Emil Lundberg via GitHub (Wednesday, 11 October)
- balfanz via GitHub (Wednesday, 11 October)
- =JeffH via GitHub (Wednesday, 11 October)
- balfanz via GitHub (Wednesday, 11 October)
[webauthn] Android SafetyNet Attestation lacks information on authenticator provenance
[webauthn] Ask for tests for normative changes in CONTRIBUTING.md
[webauthn] Authenticator session
[webauthn] Authenticator session not possible for BLE
- =JeffH via GitHub (Tuesday, 31 October)
- Johan Verrept via GitHub (Thursday, 26 October)
- Angelo Liao via GitHub (Wednesday, 25 October)
- =JeffH via GitHub (Wednesday, 18 October)
- Emil Lundberg via GitHub (Tuesday, 17 October)
- Johan Verrept via GitHub (Tuesday, 17 October)
- Emil Lundberg via GitHub (Tuesday, 17 October)
- Johan Verrept via GitHub (Tuesday, 17 October)
- Emil Lundberg via GitHub (Tuesday, 17 October)
- Johan Verrept via GitHub (Tuesday, 17 October)
- Emil Lundberg via GitHub (Monday, 16 October)
- Johan Verrept via GitHub (Monday, 16 October)
- Emil Lundberg via GitHub (Monday, 16 October)
- Johan Verrept via GitHub (Monday, 16 October)
- Johan Verrept via GitHub (Monday, 16 October)
- Emil Lundberg via GitHub (Monday, 16 October)
[webauthn] authenticatorCancel seems like it can cancel too much
[webauthn] authenticatorMakeCredential operation credential filtering
[webauthn] authenticatorMakeCredential: Only exclude CredIDs matching the RPID
[webauthn] basicIntegrity in SafetyNet documentation not sufficiently defined
[webauthn] Change user.id examples to binary encoding.
[webauthn] clarified the ECDAA signing procedure. Close #591
[webauthn] clarify "authenticator model": RPs may perform feature-based authenticator selection
[webauthn] clarify isPlatformAuthenticatorAvailable's semantics
[webauthn] clientExtensionResults attribute cannot be a Record type
[webauthn] Consider dropping requirement for TUP on create()
[webauthn] Credential ID uniqueness expectations are inconsistent/vague
[webauthn] credentials.get() should have optional parameters for userVerification and userPresence
- Akshay Kumar via GitHub (Monday, 16 October)
- Anthony Nadalin via GitHub (Monday, 16 October)
- Emil Lundberg via GitHub (Friday, 13 October)
- Emil Lundberg via GitHub (Friday, 13 October)
- Akshay Kumar via GitHub (Friday, 13 October)
- Emil Lundberg via GitHub (Friday, 13 October)
- Akshay Kumar via GitHub (Friday, 13 October)
- =JeffH via GitHub (Friday, 13 October)
- Emil Lundberg via GitHub (Friday, 13 October)
- =JeffH via GitHub (Friday, 13 October)
- =JeffH via GitHub (Friday, 13 October)
- Ibrahim Damlaj via GitHub (Friday, 13 October)
- Emil Lundberg via GitHub (Wednesday, 11 October)
- Akshay Kumar via GitHub (Wednesday, 11 October)
- Akshay Kumar via GitHub (Wednesday, 11 October)
- balfanz via GitHub (Wednesday, 11 October)
[webauthn] CTAP/U2F doesn't status indicating the user cancelled the operation
[webauthn] ctsprofilematch in SafetyNet documentation not sufficiently defined
[webauthn] Define how to verify the attestation certificate
[webauthn] Define Public Key Credential Source and Credential ID.
- =JeffH via GitHub (Wednesday, 25 October)
- =JeffH via GitHub (Wednesday, 25 October)
- Jeffrey Yasskin via GitHub (Tuesday, 24 October)
- =JeffH via GitHub (Tuesday, 24 October)
- Jeffrey Yasskin via GitHub (Monday, 23 October)
- =JeffH via GitHub (Monday, 23 October)
- =JeffH via GitHub (Monday, 23 October)
- Anthony Nadalin via GitHub (Wednesday, 18 October)
- Emil Lundberg via GitHub (Wednesday, 18 October)
- Mike West via GitHub (Wednesday, 18 October)
- Jeffrey Yasskin via GitHub (Wednesday, 18 October)
- Anthony Nadalin via GitHub (Tuesday, 17 October)
- Mike West via GitHub (Monday, 16 October)
- Jeffrey Yasskin via GitHub (Sunday, 15 October)
- Anthony Nadalin via GitHub (Saturday, 14 October)
- Jeffrey Yasskin via GitHub (Wednesday, 11 October)
- Emil Lundberg via GitHub (Wednesday, 11 October)
[webauthn] Define sensible limits for User and RP Entity to be stored on Authenticator as part of create credential
[webauthn] Describe how authenticators unique and find credential sources.
[webauthn] detail-level issues in signature format, attestation format(s), attestation statement
[webauthn] Display name content rules?
[webauthn] Examples should include non-ASCII [editorial]
[webauthn] Extension identifiers in examples are inconsistent with registered identifiers
[webauthn] Extensions need to define how their parameters convert to/from CBOR
[webauthn] Feature request: Add API for android finger print reader
[webauthn] FIDO U2F Attestation Statement Format doesn't say what to do with AAGUID
[webauthn] FIDO U2F Attestation Statement Format doesn't say what to do with Counter
[webauthn] First factor authentication selection
[webauthn] First factor authenticator selection
- Angelo Liao via GitHub (Wednesday, 25 October)
- =JeffH via GitHub (Monday, 16 October)
- Johan Verrept via GitHub (Monday, 16 October)
- Emil Lundberg via GitHub (Monday, 16 October)
- Ki-Eun Shin via GitHub (Monday, 16 October)
- Emil Lundberg via GitHub (Sunday, 15 October)
- Adam Langley via GitHub (Sunday, 15 October)
- Ki-Eun Shin via GitHub (Sunday, 15 October)
- Emil Lundberg via GitHub (Sunday, 15 October)
- Ki-Eun Shin via GitHub (Sunday, 15 October)
- Ki-Eun Shin via GitHub (Thursday, 12 October)
- Johan Verrept via GitHub (Thursday, 12 October)
[webauthn] fix #254: credman alignment: update #getAssertion section a la PR #498
[webauthn] Fix #393: Rename attestation data to attested credential data
[webauthn] Fix #560
[webauthn] Fix #560: ensure #registering-a-new-credential step 10 and the inputs to all attStmt types' verification procedures match
[webauthn] Fix #561
[webauthn] Fix #569 - Add Exposed to all WebIDL interfaces
[webauthn] Fix #574 - Change language for Create and Get to support hotplugging
[webauthn] Fix #609: Formally define User Handle
[webauthn] Fix #618 - Make PublicKeyCredential.isPlatformAuthenticatorAvailable static
[webauthn] Fix #622: Clarify PublicKeyCredentialEntity name descriptions
[webauthn] Fix #624 - Change PublicKeyCredential.clientExtensionResults to an operation
[webauthn] fix #657: where does return value of PublicKeyCredential.getClientExtensionResults() come from?
[webauthn] fixup algs contd 3
[webauthn] further details for authenticatorCancel operation
[webauthn] How should the browser handle CredentialMediationRequirement for public key credentials?
[webauthn] impl guidelines for signature counter
[webauthn] include public key in result from create()
[webauthn] Incorrect feedback link in 20160531 WD
[webauthn] isPlatformAuthenticatorAvailable's examples imply it should be static
[webauthn] isPlatformAuthenticatorAvailable() timeout really 10 minutes?
[webauthn] Key types and algorithms are confusing
[webauthn] keyType: "public-key" is superfluous
[webauthn] Make create() and get() abortable
[webauthn] Make packed attestation format Privacy CA-friendly
[webauthn] Merged Pull Request: clarified the ECDAA signing procedure. Close #591
[webauthn] Merged Pull Request: Fix #393: Rename attestation data to attested credential data
[webauthn] Merged Pull Request: Fix #560: ensure #registering-a-new-credential step 10 and the inputs to all attStmt types' verification procedures match
[webauthn] Merged Pull Request: Fix #561
[webauthn] Merged Pull Request: fix #657: where does return value of PublicKeyCredential.getClientExtensionResults() come from?
[webauthn] Merged Pull Request: fixup algs contd 3
[webauthn] Name the parameters and variables in authenticatorGetAssertion.
[webauthn] Name the parameters and variables in authenticatorMakeCredential.
[webauthn] Need to fix android key attestation verification procedure
[webauthn] Need to remove the term "authentication key" in self attestation description
[webauthn] new commits pushed by balfanz
[webauthn] new commits pushed by christiaanbrand
[webauthn] new commits pushed by emlun
[webauthn] new commits pushed by equalsJeffH
- =JeffH via GitHub (Monday, 30 October)
- =JeffH via GitHub (Friday, 27 October)
- =JeffH via GitHub (Wednesday, 25 October)
- =JeffH via GitHub (Monday, 23 October)
- =JeffH via GitHub (Thursday, 19 October)
- =JeffH via GitHub (Thursday, 19 October)
- =JeffH via GitHub (Thursday, 19 October)
- =JeffH via GitHub (Thursday, 19 October)
- =JeffH via GitHub (Tuesday, 17 October)
- =JeffH via GitHub (Monday, 16 October)
- =JeffH via GitHub (Friday, 13 October)
- =JeffH via GitHub (Friday, 13 October)
- =JeffH via GitHub (Thursday, 12 October)
- =JeffH via GitHub (Thursday, 12 October)
- =JeffH via GitHub (Wednesday, 11 October)
- =JeffH via GitHub (Wednesday, 11 October)
- =JeffH via GitHub (Wednesday, 11 October)
- =JeffH via GitHub (Wednesday, 11 October)
- =JeffH via GitHub (Thursday, 5 October)
- =JeffH via GitHub (Thursday, 5 October)
[webauthn] new commits pushed by jcjones
[webauthn] new commits pushed by jyasskin
[webauthn] new commits pushed by rlin1
- Rolf Lindemann via GitHub (Thursday, 12 October)
- Rolf Lindemann via GitHub (Thursday, 12 October)
- Rolf Lindemann via GitHub (Wednesday, 11 October)
- Rolf Lindemann via GitHub (Wednesday, 11 October)
- Rolf Lindemann via GitHub (Wednesday, 11 October)
- Rolf Lindemann via GitHub (Wednesday, 11 October)
- Rolf Lindemann via GitHub (Wednesday, 11 October)
- Rolf Lindemann via GitHub (Wednesday, 11 October)
- Rolf Lindemann via GitHub (Friday, 6 October)
- Rolf Lindemann via GitHub (Wednesday, 4 October)
- Rolf Lindemann via GitHub (Wednesday, 4 October)
- Rolf Lindemann via GitHub (Wednesday, 4 October)
- Rolf Lindemann via GitHub (Wednesday, 4 October)
- Rolf Lindemann via GitHub (Wednesday, 4 October)
[webauthn] new commits pushed by WebAuthnBot
- WebAuthnBot via GitHub (Wednesday, 25 October)
- WebAuthnBot via GitHub (Monday, 23 October)
- WebAuthnBot via GitHub (Thursday, 19 October)
- WebAuthnBot via GitHub (Thursday, 19 October)
- WebAuthnBot via GitHub (Wednesday, 18 October)
- WebAuthnBot via GitHub (Monday, 16 October)
- WebAuthnBot via GitHub (Monday, 16 October)
- WebAuthnBot via GitHub (Saturday, 14 October)
- WebAuthnBot via GitHub (Thursday, 12 October)
- WebAuthnBot via GitHub (Thursday, 12 October)
- WebAuthnBot via GitHub (Thursday, 12 October)
- WebAuthnBot via GitHub (Thursday, 12 October)
- WebAuthnBot via GitHub (Thursday, 12 October)
- WebAuthnBot via GitHub (Thursday, 12 October)
- WebAuthnBot via GitHub (Thursday, 12 October)
- WebAuthnBot via GitHub (Wednesday, 11 October)
- WebAuthnBot via GitHub (Wednesday, 11 October)
- WebAuthnBot via GitHub (Wednesday, 11 October)
- WebAuthnBot via GitHub (Wednesday, 11 October)
- WebAuthnBot via GitHub (Wednesday, 11 October)
- WebAuthnBot via GitHub (Wednesday, 11 October)
- WebAuthnBot via GitHub (Tuesday, 10 October)
- WebAuthnBot via GitHub (Monday, 9 October)
- WebAuthnBot via GitHub (Thursday, 5 October)
- WebAuthnBot via GitHub (Wednesday, 4 October)
- WebAuthnBot via GitHub (Wednesday, 4 October)
[webauthn] No way to select an intended authenticator during authentication with attachment info
[webauthn] Not clear what to do with cross platform authenticators during make-an-assertion step
[webauthn] Not necessary to pass AuthenticatorSelectionCriteria members to authenticatorMakeCredential()
[webauthn] Nothing required in PublicKeyCredentialEntity
[webauthn] Only exclude CredIDs matching the RPID
- =JeffH via GitHub (Tuesday, 31 October)
- =JeffH via GitHub (Monday, 23 October)
- Anthony Nadalin via GitHub (Monday, 23 October)
- Johan Verrept via GitHub (Monday, 23 October)
- Akshay Kumar via GitHub (Monday, 23 October)
- =JeffH via GitHub (Monday, 23 October)
- =JeffH via GitHub (Monday, 23 October)
- =JeffH via GitHub (Thursday, 19 October)
- J.C. Jones via GitHub (Thursday, 19 October)
- J.C. Jones via GitHub (Thursday, 19 October)
- J.C. Jones via GitHub (Thursday, 19 October)
- =JeffH via GitHub (Wednesday, 18 October)
- Emil Lundberg via GitHub (Monday, 16 October)
- Emil Lundberg via GitHub (Monday, 16 October)
- Emil Lundberg via GitHub (Monday, 16 October)
[webauthn] Packed and U2F Attestation Statements' verifications don't differentiate between Basic and Privacy CA Attestation Types
[webauthn] parameter lists in #createCredential and #op-make-cred do not match
[webauthn] Per TCG: "privacy CA" is now "Attestation CA"
[webauthn] Plumb User ID through
[webauthn] preventSilentAccess() -- what effect does calling it have?
[webauthn] Privacy CA not defined or linked
[webauthn] Privacy Considerations should describe risks of storing userID/displayName in "second-factor" authenticators
[webauthn] Public Key Infrastructures and Web Authentication
[webauthn] PublicKeyCredentialUserEntity difference between name, displayName and id not clear
- =JeffH via GitHub (Thursday, 19 October)
- Emil Lundberg via GitHub (Monday, 16 October)
- Johan Verrept via GitHub (Monday, 16 October)
- =JeffH via GitHub (Thursday, 12 October)
- Johan Verrept via GitHub (Thursday, 12 October)
- Johan Verrept via GitHub (Thursday, 12 October)
- Emil Lundberg via GitHub (Thursday, 12 October)
- Emil Lundberg via GitHub (Thursday, 12 October)
- Emil Lundberg via GitHub (Thursday, 12 October)
- Johan Verrept via GitHub (Thursday, 12 October)
- Emil Lundberg via GitHub (Wednesday, 11 October)
- Jeffrey Yasskin via GitHub (Wednesday, 11 October)
- Emil Lundberg via GitHub (Tuesday, 10 October)
- Johan Verrept via GitHub (Tuesday, 10 October)
[webauthn] Pull Request: Ask for tests for normative changes in CONTRIBUTING.md
[webauthn] Pull Request: fix #254: credman alignment: update #getAssertion section a la PR #498
[webauthn] Pull Request: Fix #561
[webauthn] Pull Request: Fix #574 - Change language for Create and Get to support hotplugging
[webauthn] Pull Request: Fix #622: Clarify PublicKeyCredentialEntity name descriptions
[webauthn] Pull Request: fix #657: where does return value of PublicKeyCredential.getClientExtensionResults() come from?
[webauthn] Pull Request: Master2
[webauthn] Pull Request: Only exclude CredIDs matching the RPID
[webauthn] Pull Request: Update the RP operation section to be "not normative"
[webauthn] Relaxing user prompt requirements in certain cases
[webauthn] Remove [SameObject] from AuthenticatorAssertionResponse.userId
[webauthn] Rename PublicKeyCredentialEntity fields
[webauthn] Require authenticators to implement the signature counter
[webauthn] Restore identifier alignment with CTAP and WD-06
[webauthn] restrict WebAuthentication API to only top level browsing context
[webauthn] revamped [[Create]]() method lacks origin argument
[webauthn] RP guidelines should allow RP to not check attestation
[webauthn] Sign counter alg 507 alternative: optional sig counter
[webauthn] Sign counter alg clarification [see issue #507]
[webauthn] Signature Counter needs to be mandatory in authenticationData
[webauthn] Specify how to handle authenticators that are plugged after registration/signing is requested
[webauthn] technical & terminology issues with PR#558 Plumb User ID through
[webauthn] There is no "current settings object" in algorithm steps that are executing in parallel
[webauthn] Tools: Add Vagrantfile for a VM with bikeshed installed
[webauthn] Transaction authorization extensions are registration and authentication extension?
[webauthn] undefined terms
[webauthn] Update CTAP references
[webauthn] Update definition of Authenticator to make it more similar to FIDO's def
[webauthn] Update the RP operation section to be "not normative"
[webauthn] User Verification Method (uvm) extension incorrectly mentions user verification *index*
[webauthn] WebAuthn available to Workers? aka "silent authentication"
[webauthn] What does "which has no other operations in progress" mean in practice?
[webauthn] where does return value of PublicKeyCredential.getClientExtensionResults() come from?
All issues assigned to milestones
Closed: [webauthn] #registering-a-new-credential step 10 breakage
Closed: [webauthn] [[Create]](options) method does not need to call authenticatorMakeCredential() with separate |rpId|
Closed: [webauthn] authenticatorCancel seems like it can cancel too much
Closed: [webauthn] authenticatorMakeCredential: Only exclude CredIDs matching the RPID
Closed: [webauthn] basicIntegrity in SafetyNet documentation not sufficiently defined
Closed: [webauthn] CDDL for attStmtType is confusing
Closed: [webauthn] Change user.id examples to binary encoding.
Closed: [webauthn] Consider dropping requirement for TUP on create()
Closed: [webauthn] credential ID returned by authenticatorGetAssertion() is optional if allowList has exactly one member
Closed: [webauthn] ctsprofilematch in SafetyNet documentation not sufficiently defined
Closed: [webauthn] Define how to verify the attestation certificate
Closed: [webauthn] Description of attestation signature generation for ECDAA needs to be fixed.
Closed: [webauthn] ensure #registering-a-new-credential step 10 and the inputs to all attStmt types' verification procedures match
Closed: [webauthn] Feature request: Add API for android finger print reader
Closed: [webauthn] FIDO U2F Attestation Statement Format doesn't say what to do with AAGUID
Closed: [webauthn] FIDO U2F Attestation Statement Format doesn't say what to do with Counter
Closed: [webauthn] First factor authenticator selection
Closed: [webauthn] include public key in result from create()
Closed: [webauthn] Incorrect feedback link in 20160531 WD
Closed: [webauthn] isPlatformAuthenticatorAvailable's examples imply it should be static
Closed: [webauthn] Key types and algorithms are confusing
Closed: [webauthn] Make packed attestation format Privacy CA-friendly
Closed: [webauthn] No way to select an intended authenticator during authentication with attachment info
Closed: [webauthn] Not clear what's executed in parallel in Section 4.1.3, Step 24.3
Closed: [webauthn] parameter lists in #createCredential and #op-make-cred do not match
Closed: [webauthn] Public Key Infrastructures and Web Authentication
Closed: [webauthn] rename "attestation data" to be "attested credential"
Closed: [webauthn] Rename PublicKeyCredentialEntity fields
Closed: [webauthn] Signature Counter needs to be mandatory in authenticationData
Closed: [webauthn] Specify how to handle authenticators that are plugged after registration/signing is requested
Closed: [webauthn] technical & terminology issues with PR#558 Plumb User ID through
Closed: [webauthn] Update CTAP references
Closed: [webauthn] user id should be returned in get()
Closed: [webauthn] where does return value of PublicKeyCredential.getClientExtensionResults() come from?
diffs of webauthn proto-WD-07 from WD-06
Even newer W3C Web AuthN dial-in for 10/18
FIDO2 CTAP Specification Review Draft
Fwd: Web Authentication Working Group re-charter approved; Call for participation
Invitation: W3C WebAuthn review @ Wed Oct 11, 2017 10:00 - 17:50 (PDT) (public-webauthn@w3.org)
Issue comment editing turned off?
Meeting at TPAC with Web of Things
Minutes from the 10/11/2017 Face to Face Meeting `
New W3C Web AuthN Meeting Coordinates
PR #665 update by JeffH needs review
PR#614 reviewed: Fix #393: Rename attestation data to attested credential data
services.w3.org/github-notify-ml does not fwd pull_request.{opened,closed} events
UI for webauthn with origins
W3C Face-to-Face meeting
W3C WebAuthn Face to Face Meeting
WebEx for TPAC
Last message date: Tuesday, 31 October 2017 21:27:20 UTC