Re: [webauthn] Add "smart-card" to AuthenticatorTransport enum (WebKit) (#1835) from John Bradley via GitHub on 2022-12-19 (public-webauthn@w3.org from December 2022)

From: John Bradley via GitHub <sysbot+gh@w3.org>
Date: Mon, 19 Dec 2022 22:37:54 +0000
To: public-webauthn@w3.org
Message-ID: <issue_comment.created-1358501854-1671489473-sysbot+gh@w3.org>

I went back and looked at 2018 issue https://github.com/fido-alliance/security-requirements/issues/258
It had to do with Chrome Web USB opening up CCID at the time.  I can't see a resulting pull request that actually blocked CCID so I probably miss remembered that.  I know Yubico removed the functionality for accessing CTAP over CCID at the time.   However, CCID access is also sort of useful.  

If there are no security problems, then a SC contact interface over CCID may be a candidate as a new transport.  

Is having that as a transport hint going to help Safari. 

Microsoft is the only other platform supporting CCID readers as far as I know.

We should probably get @akshayku 's opinion.




-- 
GitHub Notification of comment by ve7jtb
Please view or discuss this issue at https://github.com/w3c/webauthn/issues/1835#issuecomment-1358501854 using your GitHub account


-- 
Sent via github-notify-ml as configured in https://github.com/w3c/github-notify-ml-config

Received on Monday, 19 December 2022 22:37:56 UTC