Re: [webauthn] Clarify user identification in RP assertion verification operation from Emil Lundberg via GitHub on 2018-10-01 (public-webauthn@w3.org from October 2018)

From: Emil Lundberg via GitHub <sysbot+gh@w3.org>
Date: Mon, 01 Oct 2018 11:02:33 +0000
To: public-webauthn@w3.org
Message-ID: <issue_comment.created-425868526-1538391751-sysbot+gh@w3.org>

Sorry for my late reply...

Continuing from https://github.com/w3c/webauthn/pull/1082#discussion_r221568308...

The definition of **Credential ID** reads (emphasis added):

>A probabilistically-unique byte sequence identifying a **public key credential source** and its authentication assertions.

So I think it's more appropriate to say "the public key credential source identified by |credential.id|" than "the public key credential identified by |credential.id|".

I agree it's probably a good idea to add "Initiating a(n) registration/authentication ceremony" subsections to the RP Operations section.

-- 
GitHub Notification of comment by emlun
Please view or discuss this issue at https://github.com/w3c/webauthn/pull/1082#issuecomment-425868526 using your GitHub account

Received on Monday, 1 October 2018 11:02:34 UTC