- From: Ki-Eun Shin via GitHub <sysbot+gh@w3.org>
- Date: Thu, 16 Aug 2018 02:18:10 +0000
- To: public-webauthn@w3.org
Kieun has just created a new issue for https://github.com/w3c/webauthn: == FIDO U2F supports Attestation CA (AttCA)? == [Section 8.6](https://w3c.github.io/webauthn/#fido-u2f-attestation) describes FIDO U2F attestation statement format. The supported attestation types includes _Basic_ and _AttCA_. But, there is no description regarding _AttCA_ in case of U2F although TPM format has such description for _AttCA_. Also, there is no case which returns _AttCA_ after verifying U2F attestation. I know that there were discussions related to this from Google, I'm not sure whether decision is made to support _AttCA_ or not. So, We have following options. 1. Remove _AttCA_ from the U2F supported attestation types 2. Add descriptions of _AttCA_ cases to [Section 8.6](https://w3c.github.io/webauthn/#fido-u2f-attestation). Also, modify _AttCA_ description in [Section 6.4.3](https://w3c.github.io/webauthn/#sctn-attestation-types) by adding U2F cases Please view or discuss this issue at https://github.com/w3c/webauthn/issues/1042 using your GitHub account
Received on Thursday, 16 August 2018 02:18:11 UTC