Re: [webauthn] TPM attestation format & EdDSA & hash alg (#1148) from Rolf Lindemann via GitHub on 2019-02-06 (public-webauthn@w3.org from February 2019)

From: Rolf Lindemann via GitHub <sysbot+gh@w3.org>
Date: Wed, 06 Feb 2019 12:56:27 +0000
To: public-webauthn@w3.org
Message-ID: <issue_comment.created-461013575-1549457786-sysbot+gh@w3.org>

In the field "alg" we expect the COSEAlgorithmIdentifier.
The Edwards-curve related identifier is "EdDSA" (see https://www.iana.org/assignments/cose/cose.xhtml#algorithms).
The related algorithm is described in https://tools.ietf.org/html/rfc8152#page-40.
According to that (referenced) descripton, only the "pure" version of EdDSA is supported: "This is because it is not expected that extremely large
   contents are going to be needed and, based on the arrangement of the
   message structure, the entire message is going to need to be held in
   memory in order to create or verify a signature"



-- 
GitHub Notification of comment by rlin1
Please view or discuss this issue at https://github.com/w3c/webauthn/issues/1148#issuecomment-461013575 using your GitHub account

Received on Wednesday, 6 February 2019 12:56:29 UTC