Re: [webauthn] Android-key attestation format should include guidance on checks for timestampMs in the jws payload from Shane Weeden via GitHub on 2018-08-14 (public-webauthn@w3.org from August 2018)

From: Shane Weeden via GitHub <sysbot+gh@w3.org>
Date: Tue, 14 Aug 2018 21:34:00 +0000
To: public-webauthn@w3.org
Message-ID: <issue_comment.created-413023828-1534282439-sysbot+gh@w3.org>

Consideration is ok, however this seems to be a perfectly sensible test so I would recommend it be included as a validation step. There is really no reason not to. It almost seems like oversight that it was not included when the webauthn spec was written.


-- 
GitHub Notification of comment by sbweeden
Please view or discuss this issue at https://github.com/w3c/webauthn/issues/1035#issuecomment-413023828 using your GitHub account

Received on Tuesday, 14 August 2018 21:34:01 UTC