W3C home > Mailing lists > Public > public-webauthn@w3.org > January 2022

Re: [webauthn] devciePubKey extension MUST be supported if passkey is supported (#1691)

From: Max Hata via GitHub <sysbot+gh@w3.org>
Date: Fri, 21 Jan 2022 02:31:18 +0000
To: public-webauthn@w3.org
Message-ID: <issue_comment.created-1018108521-1642732277-sysbot+gh@w3.org>
Thanks for all the comments.

I not know the best way to define the requirement in the spec. But RP requirement is how to avoid the following situation.

> There are many RPs who cannot accept passkeys without devicePubKey due to security and/or legal reasons. 
> If there is a device that supports passkeys but not devicePubKey, such RPs cannot deploy WebAuthN or FIDO at all.

How will this be avoided? How can the WebAuthN spec help solve?

GitHub Notification of comment by maxhata
Please view or discuss this issue at https://github.com/w3c/webauthn/issues/1691#issuecomment-1018108521 using your GitHub account

Sent via github-notify-ml as configured in https://github.com/w3c/github-notify-ml-config
Received on Friday, 21 January 2022 02:31:24 UTC

This archive was generated by hypermail 2.4.0 : Tuesday, 5 July 2022 07:26:45 UTC