Re: [webauthn] Requesting properties of created credentials. (#1449) from Eldan Ben-Haim via GitHub on 2021-06-18 (public-webauthn@w3.org from June 2021)

From: Eldan Ben-Haim via GitHub <sysbot+gh@w3.org>
Date: Fri, 18 Jun 2021 04:30:28 +0000
To: public-webauthn@w3.org
Message-ID: <issue_comment.created-863747192-1623990626-sysbot+gh@w3.org>

@Firstyear I think what you referred to are resident vs non resident keys (or discoverable vs non discoverable) whereas the distinction here is between device-bound vs shared across devices. The latter has implications re keys being hardware backed or not, the former doesn’t necessarily have those. 

@sbweeden yes, that’s what I’m getting at. Allowing an RP to require (or prefer) hardware backed keys when using platform authenticators (probably could be generalized for roaming too?)

-- 
GitHub Notification of comment by eldanb
Please view or discuss this issue at https://github.com/w3c/webauthn/issues/1449#issuecomment-863747192 using your GitHub account


-- 
Sent via github-notify-ml as configured in https://github.com/w3c/github-notify-ml-config

Received on Friday, 18 June 2021 04:31:13 UTC