Re: [webauthn] Consider allowing authenticators to randomise signed hashes. from Angelo Liao via GitHub on 2017-09-02 (public-webauthn@w3.org from September 2017)

From: Angelo Liao via GitHub <sysbot+gh@w3.org>
Date: Sat, 02 Sep 2017 05:10:56 +0000
To: public-webauthn@w3.org
Message-ID: <issue_comment.created-326722660-1504329047-sysbot+gh@w3.org>

I don't see any reason for us to talk about this issue within a W3C web spec. At the end of the day, this spec is a web spec that aims at standardizing the behaviors of the user agents. This spec doesn't attempt to standardize or define the hardware design. Please, if you want to talk about hardware design, go talk about it in CTAP land, in U2F land, or in UAF land. @agl @rlin1 @equalsJeffH 

The spec will **describe** what the authenticators' fields mean and the differences between the different authenticators. But that doesn't mean we make design decisions here. 

We should close the issue asap to avoid distraction since the ask here is to re-do hardware interface design (like by next Tuesday). 

-- 
GitHub Notification of comment by AngeloKai
Please view or discuss this issue at https://github.com/w3c/webauthn/issues/453#issuecomment-326722660 using your GitHub account

Received on Saturday, 2 September 2017 05:10:59 UTC