Re: [webauthn] Attestation privacy advice creates large scale security risks (#1127) from Ackermann Yuriy via GitHub on 2019-01-16 (public-webauthn@w3.org from January 2019)

From: Ackermann Yuriy via GitHub <sysbot+gh@w3.org>
Date: Wed, 16 Jan 2019 18:40:39 +0000
To: public-webauthn@w3.org
Message-ID: <issue_comment.created-454892022-1547664038-sysbot+gh@w3.org>

@emlun Proposing this compromise:

> A WebAuthn authenticator manufacturer, should produce large enough batch of the authenticators, that are shipped with the same attestation key. In the same time the batch size shall be low enough to ensure that in case of attestation key compromise, the least amount of users is affected. This approach ensures that users privacy is preserved, due to the size of batch, while ensuring sufficient risk management in case of compromise of the attestation keys on the device.

> For example: FIDO protocols require that at least 100,000 authenticator devices share the same attestation keys and certificate in order to produce sufficiently large groups. This may serve as guidance about suitable batch sizes.

-- 
GitHub Notification of comment by herrjemand
Please view or discuss this issue at https://github.com/w3c/webauthn/issues/1127#issuecomment-454892022 using your GitHub account

Received on Wednesday, 16 January 2019 18:40:41 UTC