Re: [webauthn] U2F Attestation Statement Format does not define "self attestation" steps from Adam Langley via GitHub on 2018-01-31 (public-webauthn@w3.org from January 2018)

From: Adam Langley via GitHub <sysbot+gh@w3.org>
Date: Wed, 31 Jan 2018 18:47:35 +0000
To: public-webauthn@w3.org
Message-ID: <issue_comment.created-362031036-1517424454-sysbot+gh@w3.org>

Unclear if this will be used. In practice, I don't know of any U2F tokens that do self-attestation via an X.509 certificate. It _is_ possible that a soft-token could do this, but a soft-token could also return a webauthn self attestation directly, rather than going via U2F.

-- 
GitHub Notification of comment by agl
Please view or discuss this issue at https://github.com/w3c/webauthn/issues/745#issuecomment-362031036 using your GitHub account

Received on Wednesday, 31 January 2018 18:48:08 UTC