Re: [webauthn] Either UV or UP should be enough from Mike Jones via GitHub on 2018-08-14 (public-webauthn@w3.org from August 2018)

From: Mike Jones via GitHub <sysbot+gh@w3.org>
Date: Tue, 14 Aug 2018 19:34:13 +0000
To: public-webauthn@w3.org
Message-ID: <issue_comment.created-412989626-1534275252-sysbot+gh@w3.org>

The table explaining UP/UV combinations at the end of https://fidoalliance.org/specs/fido-v2.0-id-20180227/fido-client-to-authenticator-protocol-v2.0-id-20180227.html#authenticatorGetAssertion (right before https://fidoalliance.org/specs/fido-v2.0-id-20180227/fido-client-to-authenticator-protocol-v2.0-id-20180227.html#authenticatorGetNextAssertion) may be helpful in considering this issue.  It says:

Flags | Meaning
-- | --
"up"=0 "uv"=0 | Silent authentication
"up"=1 "uv"=0 | Physical user presence verified, but no user verification
"up"=0 "uv"=1 | User verification performed, but physical user presence not verified (a typical "smartcard scenario")
"up"=1 "uv"=1 | User verification performed and physical user presence verified



-- 
GitHub Notification of comment by selfissued
Please view or discuss this issue at https://github.com/w3c/webauthn/issues/1037#issuecomment-412989626 using your GitHub account

Received on Tuesday, 14 August 2018 19:34:17 UTC