Re: [webauthn] Confusion on COSEAlgorithmIdentifier standards (#1676)

This is a topic specific to the IETF and IANA. While we as an industry should prefer more modern (and sufficiently vetted) algorithms, we need to remain cognizant that many users and vendors will continue to use RSA signing, and I don't think we need to include any recommendations within the WebAuthn spec as to which types of algorithms a developer should support. 

-- 
GitHub Notification of comment by nicksteele
Please view or discuss this issue at https://github.com/w3c/webauthn/issues/1676#issuecomment-963560499 using your GitHub account


-- 
Sent via github-notify-ml as configured in https://github.com/w3c/github-notify-ml-config

Received on Monday, 8 November 2021 20:49:13 UTC