Re: [webauthn] Does signing the credential public key with the attestation private key prove to the RP that the user owns the credential private key? (#1679)

I see. Then signing the credential public key with the attestation private key does **NOT** prove to the RP that the user owns the credential private key. It is just based on trust?

-- 
GitHub Notification of comment by boogerlad
Please view or discuss this issue at https://github.com/w3c/webauthn/issues/1679#issuecomment-954051997 using your GitHub account


-- 
Sent via github-notify-ml as configured in https://github.com/w3c/github-notify-ml-config

Received on Thursday, 28 October 2021 17:28:09 UTC