Re: [webauthn] devicePubKey extension MUST be supported if multi-device WebAuthn credentials are used (#1691)

> Is that a guarantee, @timcappalli? Does that include platform key-pairs too? Will the FIDO Alliance make "synchronized key-pairs/credentials" mandatory or optional for server manufacturers to get certified? Will all those people who have invested in web/mobile applications never have to change their web/mobile apps when Level-3 is standardized if they do not wish to support synchronized key-pairs/credentials?

You are completely right! There is no way for an RP to detect a synchronised key today or in the future, regardless of DPK existing or not. :) 

GitHub Notification of comment by Firstyear
Please view or discuss this issue at using your GitHub account

Sent via github-notify-ml as configured in

Received on Wednesday, 26 January 2022 08:12:00 UTC