[webauthn] FIDO U2F supports Attestation CA (AttCA)? from Ki-Eun Shin via GitHub on 2018-08-16 (public-webauthn@w3.org from August 2018)

From: Ki-Eun Shin via GitHub <sysbot+gh@w3.org>
Date: Thu, 16 Aug 2018 02:18:10 +0000
To: public-webauthn@w3.org
Message-ID: <issues.opened-351031114-1534385889-sysbot+gh@w3.org>

Kieun has just created a new issue for https://github.com/w3c/webauthn:

== FIDO U2F supports Attestation CA (AttCA)? ==
[Section 8.6](https://w3c.github.io/webauthn/#fido-u2f-attestation) describes FIDO U2F attestation statement format. The supported attestation types includes _Basic_ and _AttCA_.
But, there is no description regarding _AttCA_ in case of U2F although TPM format has such description for _AttCA_. Also, there is no case which returns _AttCA_ after verifying U2F attestation.

I know that there were discussions related to this from Google, I'm not sure whether decision is made to support _AttCA_ or not.

So, We have following options.

1. Remove _AttCA_ from the U2F supported attestation types
2. Add descriptions of _AttCA_ cases to [Section 8.6](https://w3c.github.io/webauthn/#fido-u2f-attestation). Also, modify _AttCA_ description in [Section 6.4.3](https://w3c.github.io/webauthn/#sctn-attestation-types) by adding U2F cases

Please view or discuss this issue at https://github.com/w3c/webauthn/issues/1042 using your GitHub account

Received on Thursday, 16 August 2018 02:18:11 UTC