Re: [webauthn] Possibility to filter displayed authenticators by certified level (#1816) from Jean Luc DI MANNO via GitHub on 2022-12-16 (public-webauthn@w3.org from December 2022)

From: Jean Luc DI MANNO via GitHub <sysbot+gh@w3.org>
Date: Fri, 16 Dec 2022 08:54:43 +0000
To: public-webauthn@w3.org
Message-ID: <issue_comment.created-1354408194-1671180882-sysbot+gh@w3.org>

The subject has been discussed during last WPSIG meeting. The UI/UX concern, resumed by @Firstyear in previous comment, has been shared by payment stakeholders. As the SPC adoption in payment ecosystem also depends on UI/UX. If the user journey generates too much friction, banks may not adopt the solution. Let's see if this new trend on Fido2 usage will change browser's providers position regarding this topic. 
In another hand (for this very use case on authenticator filtering by certified level), Windows hello and Android Safetynet authenticators are level 1 certified and, so far, SPC cannot be used with roaming authenticators. 
It is then the moment to discuss furthermore about this topic before enabling cross-platform authentication in SPC.

-- 
GitHub Notification of comment by JeanDim
Please view or discuss this issue at https://github.com/w3c/webauthn/issues/1816#issuecomment-1354408194 using your GitHub account


-- 
Sent via github-notify-ml as configured in https://github.com/w3c/github-notify-ml-config

Received on Friday, 16 December 2022 08:54:45 UTC