W3C home > Mailing lists > Public > public-webauthn@w3.org > June 2022

Re: [webauthn] No mechanisms in place for enterprise RP's to opt out of auth with a "shared" passkey (#1739)

From: Matthew Miller via GitHub <sysbot+gh@w3.org>
Date: Thu, 09 Jun 2022 21:03:08 +0000
To: public-webauthn@w3.org
Message-ID: <issue_comment.created-1151621161-1654808587-sysbot+gh@w3.org>
Particular asks for supporting use of WebAuthn by enterprise RP's:

- Ability to request a device-bound credential and always get back direct attestation (@sbweeden)
- ~~Ability to request a credential be permanently associated to the registering user (@master_kale)~~ (opens the door to too many "bad" outcomes)
- <conversation goes way off the rails>

-- 
GitHub Notification of comment by MasterKale
Please view or discuss this issue at https://github.com/w3c/webauthn/issues/1739#issuecomment-1151621161 using your GitHub account


-- 
Sent via github-notify-ml as configured in https://github.com/w3c/github-notify-ml-config
Received on Thursday, 9 June 2022 21:03:10 UTC

This archive was generated by hypermail 2.4.0 : Tuesday, 5 July 2022 07:26:46 UTC