Re: [webauthn] <new proposal> Extending WebAuthn Protocol for Remote Authentication (#1580) from Shane Weeden via GitHub on 2021-03-09 (public-webauthn@w3.org from March 2021)

From: Shane Weeden via GitHub <sysbot+gh@w3.org>
Date: Tue, 09 Mar 2021 03:46:34 +0000
To: public-webauthn@w3.org
Message-ID: <issue_comment.created-793338210-1615261593-sysbot+gh@w3.org>

And before someone says "this same problem exists with the use of FIDO authenticators for authenticating users at websites today", keep in mind the problem being solved. WebAuthn and human-consumable PKI that it facilitates is really designed to address the problems of phishing and subsequent credential stuffing attacks, which I think it does reasonably well.

-- 
GitHub Notification of comment by sbweeden
Please view or discuss this issue at https://github.com/w3c/webauthn/issues/1580#issuecomment-793338210 using your GitHub account


-- 
Sent via github-notify-ml as configured in https://github.com/w3c/github-notify-ml-config

Received on Tuesday, 9 March 2021 03:46:35 UTC