public-webauthn@w3.org from September 2020 by subject

09/02/2020 W3C Web Authentication WG Meeting Agenda

• nadalin@prodigy.net (Tuesday, 1 September)

09/09/2020 W3C Web Authentication WG Meeting Agenda

• nadalin@prodigy.net (Tuesday, 8 September)

09/16/2020 W3C Web Authentication WG Meeting Agenda

• nadalin@prodigy.net (Tuesday, 15 September)

09/23/2020 W3C Web Authentication WG Meeting Agenda

• nadalin@prodigy.net (Wednesday, 23 September)

09/30/2020 W3C Web Authentication WG Meeting Agenda

• nadalin@prodigy.net (Tuesday, 29 September)

[w3c/webauthn]

• Emil Lundberg (Thursday, 10 September)

[w3c/webauthn] 2fa8f9: Built by Travis-CI: 570648fa66d4a5451bee011bf3f9b4...

• WebAuthnBot (Thursday, 10 September)

[w3c/webauthn] 383971: Update .spec-data .bikeshed-include cache (#1479)

• Julien Cayzac (Wednesday, 9 September)

[w3c/webauthn] 3ae650: Add script that uses Docker image to update Bikesh...

• Emil Lundberg (Thursday, 3 September)

[w3c/webauthn] 47c935: Built by Travis-CI: ff9c5b03d2397ed10b7a285e068d08...

• WebAuthnBot (Wednesday, 9 September)

[w3c/webauthn] 4a1a06: Built by Travis-CI: 6156ba8e00b5a2ff8867008a1e0cd0...

• WebAuthnBot (Wednesday, 16 September)

[w3c/webauthn] 531de2: Built by Travis-CI: 383971fa7f3ef35936b11fe8dfebbc...

• WebAuthnBot (Wednesday, 9 September)

[w3c/webauthn] 550853: Built by Travis-CI: 7839cd073aae5496176c0060c75f4d...

• WebAuthnBot (Wednesday, 30 September)

[w3c/webauthn] 6156ba: Add note about fixed/empty user handles (#1483)

• Adam Langley (Wednesday, 16 September)

[w3c/webauthn] 61aaf4: Built by Travis-CI: eef23b1406d45ae95a2984311cd5e2...

• WebAuthnBot (Wednesday, 16 September)

[w3c/webauthn] 7107ed: Virtual authenticators extension support

• Adam Langley (Wednesday, 9 September)

[w3c/webauthn] 84cf69: Make unprotected account detection scenario more r...

• Emil Lundberg (Thursday, 10 September)

[w3c/webauthn] 9e634a: Remove the Psuedo-Random Function extension (#1481)

• J.C. Jones (Wednesday, 16 September)

[w3c/webauthn] a08ad9: Add security consideration on detecting non-WebAut...

• Emil Lundberg (Thursday, 10 September)
• Emil Lundberg (Monday, 7 September)

[w3c/webauthn] ba8b0e: Built by Travis-CI: 9e634a8a4e3b30a768cda642452c86...

• WebAuthnBot (Wednesday, 16 September)

[w3c/webauthn] cfc0e9: Make largeBlobs explicit during create.

• Adam Langley (Wednesday, 30 September)

[w3c/webauthn] d2ce3d: Built by Travis-CI: ff9c5b03d2397ed10b7a285e068d08...

• WebAuthnBot (Wednesday, 9 September)

[w3c/webauthn] eef23b: Update "feature policy" refs to new name "permissi...

• Julien Cayzac (Wednesday, 16 September)

[w3c/webauthn] ef56e0: Add script that uses Docker image to update Bikesh...

• Emil Lundberg (Thursday, 3 September)

[w3c/webauthn] fcf2c1: Clarify signature format for packed attestations e...

• =JeffH (Wednesday, 30 September)

[webauthn] Abstracting the concept of Privacy CA/Attestation CA into Anonymization CA (#1474)

• =JeffH via GitHub (Wednesday, 9 September)
• Emil Lundberg via GitHub (Wednesday, 2 September)
• Jiewen Tan via GitHub (Wednesday, 2 September)
• Jiewen Tan via GitHub (Wednesday, 2 September)
• =JeffH via GitHub (Wednesday, 2 September)
• Emil Lundberg via GitHub (Wednesday, 2 September)

[webauthn] add additional attestation format(s) from Apple (#1453)

• =JeffH via GitHub (Wednesday, 2 September)

[webauthn] Add explicit description on what should be done in incognito/private browsing mode (#1174)

• =JeffH via GitHub (Wednesday, 30 September)

[webauthn] Add note about fixed/empty user handles (#1483)

• Lucas Garron via GitHub (Tuesday, 15 September)
• Adam Langley via GitHub (Monday, 14 September)
• Lucas Garron via GitHub (Monday, 14 September)

[webauthn] Add security consideration on detecting non-WebAuthn accounts (#1480)

• =JeffH via GitHub (Wednesday, 9 September)

[webauthn] changing to "permissions policy" messed up MDN links (#1486)

• Julien Cayzac via GitHub (Thursday, 17 September)
• =JeffH via GitHub (Wednesday, 16 September)

[webauthn] cleanup <pre class=anchors> and use <pre class="link-defaults"> as appropriate (#1489)

• =JeffH via GitHub (Wednesday, 30 September)

[webauthn] Clearly define the way how RP handles the extensions (#1258)

• Ki-Eun Shin via GitHub (Tuesday, 29 September)
• Thomas via GitHub (Thursday, 24 September)

[webauthn] export definitions? (#1049)

• Tab Atkins Jr. via GitHub (Wednesday, 30 September)
• =JeffH via GitHub (Wednesday, 30 September)

[webauthn] Handling unwanted or unsupported attestation formats (#1485)

• Nick Steele via GitHub (Thursday, 24 September)
• Emil Lundberg via GitHub (Thursday, 17 September)
• Thomas via GitHub (Thursday, 17 September)
• Ki-Eun Shin via GitHub (Thursday, 17 September)
• Akshay Kumar via GitHub (Wednesday, 16 September)
• Emil Lundberg via GitHub (Wednesday, 16 September)
• J.C. Jones via GitHub (Wednesday, 16 September)
• Thomas via GitHub (Wednesday, 16 September)

[webauthn] Is it possible to fail the registration ceremony if a certain extension is not present? (#1487)

• Arian van Putten via GitHub (Monday, 28 September)
• Arian van Putten via GitHub (Monday, 28 September)
• John Bradley via GitHub (Monday, 28 September)
• Arian van Putten via GitHub (Monday, 28 September)
• Arian van Putten via GitHub (Monday, 28 September)

[webauthn] Make largeBlobs explicit during create. (#1470)

• Adam Langley via GitHub (Wednesday, 30 September)
• Adam Langley via GitHub (Monday, 14 September)

[webauthn] Merged Pull Request: Add note about fixed/empty user handles

• =JeffH via GitHub (Wednesday, 16 September)

[webauthn] Merged Pull Request: Add security consideration on detecting non-WebAuthn accounts

• Emil Lundberg via GitHub (Thursday, 10 September)

[webauthn] Merged Pull Request: Make largeBlobs explicit during create.

• Adam Langley via GitHub (Wednesday, 30 September)

[webauthn] Merged Pull Request: Remove the Psuedo-Random Function extension

• =JeffH via GitHub (Wednesday, 16 September)

[webauthn] Merged Pull Request: Update "feature policy" refs to new name "permissions policy" (#1473)

• =JeffH via GitHub (Wednesday, 16 September)

[webauthn] Merged Pull Request: Update .spec-data .bikeshed-include cache

• =JeffH via GitHub (Wednesday, 9 September)

[webauthn] Merged Pull Request: Virtual authenticators extension support

• Adam Langley via GitHub (Wednesday, 9 September)

[webauthn] Minor cleanups from PR 1270 review (#1291)

• Anthony Nadalin via GitHub (Wednesday, 30 September)

[webauthn] more fully delineate "privacy ca", "attestation ca", "anonymization ca" (#1422)

• Emil Lundberg via GitHub (Wednesday, 2 September)
• Jiewen Tan via GitHub (Wednesday, 2 September)
• =JeffH via GitHub (Tuesday, 1 September)
• Jiewen Tan via GitHub (Tuesday, 1 September)
• Jiewen Tan via GitHub (Tuesday, 1 September)
• Jiewen Tan via GitHub (Tuesday, 1 September)

[webauthn] Move PRF Extension into its own specification (#1462)

• =JeffH via GitHub (Wednesday, 16 September)
• =JeffH via GitHub (Wednesday, 16 September)
• J.C. Jones via GitHub (Wednesday, 16 September)
• John Bradley via GitHub (Friday, 4 September)
• Emil Lundberg via GitHub (Friday, 4 September)

[webauthn] need "how to install bikeshed in one's local webauthn repo clone" instructions (#1477)

• =JeffH via GitHub (Wednesday, 9 September)
• Julien Cayzac via GitHub (Monday, 7 September)
• Julien Cayzac via GitHub (Monday, 7 September)
• Emil Lundberg via GitHub (Thursday, 3 September)
• =JeffH via GitHub (Thursday, 3 September)

[webauthn] new commits pushed by agl

• Adam Langley via GitHub (Wednesday, 30 September)
• Adam Langley via GitHub (Wednesday, 9 September)

[webauthn] new commits pushed by emlun

• Emil Lundberg via GitHub (Thursday, 10 September)
• Emil Lundberg via GitHub (Thursday, 10 September)
• Emil Lundberg via GitHub (Monday, 7 September)
• Emil Lundberg via GitHub (Thursday, 3 September)
• Emil Lundberg via GitHub (Thursday, 3 September)

[webauthn] new commits pushed by equalsJeffH

• =JeffH via GitHub (Wednesday, 30 September)
• =JeffH via GitHub (Wednesday, 16 September)
• =JeffH via GitHub (Wednesday, 16 September)
• =JeffH via GitHub (Wednesday, 16 September)
• =JeffH via GitHub (Wednesday, 9 September)

[webauthn] new commits pushed by WebAuthnBot

• WebAuthnBot via GitHub (Wednesday, 30 September)
• WebAuthnBot via GitHub (Wednesday, 16 September)
• WebAuthnBot via GitHub (Wednesday, 16 September)
• WebAuthnBot via GitHub (Wednesday, 16 September)
• WebAuthnBot via GitHub (Thursday, 10 September)
• WebAuthnBot via GitHub (Wednesday, 9 September)
• WebAuthnBot via GitHub (Wednesday, 9 September)
• WebAuthnBot via GitHub (Wednesday, 9 September)

[webauthn] New platform authenticators are making discoverable credentials regardless of residentKey=false passed to Create() (#1457)

• Arian van Putten via GitHub (Tuesday, 15 September)
• =JeffH via GitHub (Monday, 14 September)
• Arian van Putten via GitHub (Friday, 11 September)
• Shane B Weeden (Friday, 11 September)
• Arian van Putten via GitHub (Friday, 11 September)
• Shane Weeden via GitHub (Friday, 11 September)
• Arian van Putten via GitHub (Friday, 11 September)
• Shane Weeden via GitHub (Friday, 11 September)
• Arian van Putten via GitHub (Friday, 11 September)
• =JeffH via GitHub (Wednesday, 9 September)
• Akshay Kumar via GitHub (Wednesday, 2 September)
• =JeffH via GitHub (Wednesday, 2 September)

[webauthn] Provide the public key in `AuthenticatorAttestationResponse` (#1363)

• Adam Langley via GitHub (Sunday, 27 September)
• CrazyChris75 via GitHub (Saturday, 26 September)
• Adam Langley via GitHub (Friday, 25 September)
• CrazyChris75 via GitHub (Monday, 21 September)

[webauthn] Pull Request: Add note about fixed/empty user handles

• Adam Langley via GitHub (Monday, 14 September)

[webauthn] Pull Request: Add security consideration on detecting non-WebAuthn accounts

• Emil Lundberg via GitHub (Monday, 7 September)

[webauthn] Pull Request: Clarify signature format for packed attestations et al

• =JeffH via GitHub (Wednesday, 30 September)

[webauthn] Pull Request: Remove the Psuedo-Random Function extension

• J.C. Jones via GitHub (Wednesday, 9 September)

[webauthn] Pull Request: Update .spec-data .bikeshed-include cache

• Julien Cayzac via GitHub (Monday, 7 September)

[webauthn] Regarding the issue of Credential ID exposure(13.5.6), from what perspective should RP compare RK and NRK and which should be adopted? (#1484)

• Keiko Itakura via GitHub (Monday, 28 September)
• Jun Hayakawa via GitHub (Wednesday, 16 September)
• John Bradley via GitHub (Wednesday, 16 September)
• Max Hata via GitHub (Wednesday, 16 September)
• John Bradley via GitHub (Wednesday, 16 September)

[webauthn] Regarding the issue of Credential ID exposure, from what perspective should RP compare RK and NRK and which should be adopted? (#1484)

• Keiko Itakura via GitHub (Tuesday, 15 September)

[webauthn] Remove Out-Of-Scope PRF Extension (#1478)

• J.C. Jones via GitHub (Thursday, 3 September)

[webauthn] The risk of attacker may can identify whether if the account support FIDO or not (#1475)

• Keiko Itakura via GitHub (Friday, 4 September)
• Emil Lundberg via GitHub (Wednesday, 2 September)
• Max Hata via GitHub (Wednesday, 2 September)
• Max Hata via GitHub (Wednesday, 2 September)
• Emil Lundberg via GitHub (Tuesday, 1 September)

[webauthn] undefined terms and terms we really ought to define (#462)

• Emil Lundberg via GitHub (Monday, 7 September)

[webauthn] Update "feature policy" refs to new name "permissions policy" (#1473) (#1476)

• Julien Cayzac via GitHub (Thursday, 10 September)
• Julien Cayzac via GitHub (Monday, 7 September)
• =JeffH via GitHub (Thursday, 3 September)
• Julien Cayzac via GitHub (Thursday, 3 September)
• Julien Cayzac via GitHub (Thursday, 3 September)
• Julien Cayzac via GitHub (Thursday, 3 September)
• Julien Cayzac via GitHub (Thursday, 3 September)

[webauthn] Virtual authenticators extension support (#1472)

• Nina Satragno via GitHub (Wednesday, 2 September)
• J.C. Jones via GitHub (Wednesday, 2 September)

Closed: [webauthn] Add explicit description on what should be done in incognito/private browsing mode (#1174)

• =JeffH via GitHub (Wednesday, 30 September)

Closed: [webauthn] Handling unwanted or unsupported attestation formats (#1485)

• Nick Steele via GitHub (Thursday, 24 September)

Closed: [webauthn] Is it possible to fail the registration ceremony if a certain extension is not present? (#1487)

• Arian van Putten via GitHub (Monday, 28 September)

Closed: [webauthn] Move PRF Extension into its own specification (#1462)

• =JeffH via GitHub (Wednesday, 16 September)

Closed: [webauthn] New platform authenticators are making discoverable credentials regardless of residentKey=false passed to Create() (#1457)

• John Bradley via GitHub (Wednesday, 16 September)

Closed: [webauthn] Remove Out-Of-Scope PRF Extension (#1478)

• =JeffH via GitHub (Wednesday, 16 September)

Closed: [webauthn] The risk of attacker may can identify whether if the account support FIDO or not (#1475)

• Emil Lundberg via GitHub (Thursday, 10 September)

Closed: [webauthn] update "feature policy" reference to new name: "permissions policy" (#1473)

• =JeffH via GitHub (Wednesday, 16 September)

Closed: [webauthn] Virtual authenticator support for extensions (#1471)

• Adam Langley via GitHub (Wednesday, 9 September)

Fwd: Fall 2020 TPAC event - Registration now open

• Jeff Hodges (Thursday, 10 September)

TPAC 2020 schedule...

• Jeff Hodges (Thursday, 3 September)

Web Payment Security Interest Group (WPSIG) meeting 6,7-Oct -- WebAuthn WG update?

• Jeff Hodges (Thursday, 3 September)

Weekly github digest (WebAuthn)

• W3C Webmaster via GitHub API (Tuesday, 29 September)
• W3C Webmaster via GitHub API (Tuesday, 22 September)
• W3C Webmaster via GitHub API (Tuesday, 15 September)
• W3C Webmaster via GitHub API (Tuesday, 8 September)
• W3C Webmaster via GitHub API (Tuesday, 1 September)

Last message date: Wednesday, 30 September 2020 22:50:02 UTC