Re: [webauthn] No way to verify requireResidentKey during registration step at RP side (#1060) from Ki-Eun Shin via GitHub on 2019-01-18 (public-webauthn@w3.org from January 2019)

From: Ki-Eun Shin via GitHub <sysbot+gh@w3.org>
Date: Fri, 18 Jan 2019 02:22:39 +0000
To: public-webauthn@w3.org
Message-ID: <issue_comment.created-455404261-1547778158-sysbot+gh@w3.org>

So, my suggestion is that RP should have knowledge whether the key is resided in the client side or not during the registration process without trial and error. Such information should be delivered to the RP server so that RP can decide UX flow for the authentication.

-- 
GitHub Notification of comment by Kieun
Please view or discuss this issue at https://github.com/w3c/webauthn/issues/1060#issuecomment-455404261 using your GitHub account

Received on Friday, 18 January 2019 02:22:40 UTC