W3C home > Mailing lists > Public > public-webauthn@w3.org > June 2019

PSA: Summary of new features in WebAuthn L2 FPWD relative to the WebAuthn Level 1 Recommendation

From: Jeff Hodges <jdhodges@google.com>
Date: Tue, 25 Jun 2019 17:35:47 -0700
Message-ID: <CAOt3QXsfTOTucthxAqOiB2CBgHxC6=shxMZbZfgT3cA2A6x_cQ@mail.gmail.com>
To: W3C Web Authn WG <public-webauthn@w3.org>
[please let me know if I've missed anything of significance. ]

WebAuthn Level 2 - W3C First Public Working Draft, 4 June 2019

Diff between Webauthn L2 FPWD and L1 Recommendation:

Summary of WebAuthn L2 FPWD's new features relative to the WebAuthn Level 1

* Improved Resident Key support
    Satisfies the use case stated here: Indicate resident key credential
"preferred" during registration and find out what the authenticator offered
    Includes the new section "10.10. Credential Properties Extension
(credProps)" <
and an updated "12.2. Registration Specifically with User-Verifying
Platform Authenticator" <

* Feature Policy integration (initial phase)
    See: https://www.w3.org/TR/webauthn-2/#sctn-feature-policy"
    PR #1214: <https://github.com/w3c/webauthn/pull/1214>

* String handling clarifications
    See: 6.4. String Handling
    PR #1205: <https://github.com/w3c/webauthn/pull/1205>

* Clarification of attestation limitations
    See: 13.3.1. Attestation Limitations
    PR #1095: <https://github.com/w3c/webauthn/pull/1095>

* FIDO AppID extension clarifications
    See 10.1. FIDO AppID Extension (appid)
    PRs #1143 #1118

* Authenticator-supported transports can be made RP-available at credential
creation time
    See:  AuthenticatorAttestationResponse.getTransports()
    PR #1050: <https://github.com/w3c/webauthn/pull/1050>

* "Silent authentication" is explicitly not supported in WebAuthn (at this
    PR #1140: <https://github.com/w3c/webauthn/pull/1140>

* Various detail-level technical and editorial cleanups/clarifications as
well as various terminology additions and clarifications -- see the
above-linked diff.

Received on Wednesday, 26 June 2019 00:36:37 UTC

This archive was generated by hypermail 2.4.0 : Tuesday, 5 July 2022 07:26:37 UTC