Re: [webauthn] <new proposal> Extending WebAuthn Protocol for Remote Authentication (#1580) from Emil Lundberg via GitHub on 2021-03-09 (public-webauthn@w3.org from March 2021)

From: Emil Lundberg via GitHub <sysbot+gh@w3.org>
Date: Tue, 09 Mar 2021 16:01:21 +0000
To: public-webauthn@w3.org
Message-ID: <issue_comment.created-794088577-1615305676-sysbot+gh@w3.org>

...but on second thought it's of course not a good idea to embed the raw image (likely several megabytes) in the authenticator data. Luckily we could still embed the raw image bytes in the client extension outputs, and just a hash of that in the authenticator extension output. This would probably mean that only platform authenticators can implement the extension in practice, but that would likely be the case anyway. So this should still be possible to implement within the extensions framework.

-- 
GitHub Notification of comment by emlun
Please view or discuss this issue at https://github.com/w3c/webauthn/issues/1580#issuecomment-794088577 using your GitHub account


-- 
Sent via github-notify-ml as configured in https://github.com/w3c/github-notify-ml-config

Received on Tuesday, 9 March 2021 16:01:23 UTC