Re: [webauthn] Provide a way for an RP to set an intention to offer more user friendly UX (#1823) from Tim Cappalli via GitHub on 2022-11-21 (public-webauthn@w3.org from November 2022)

From: Tim Cappalli via GitHub <sysbot+gh@w3.org>
Date: Mon, 21 Nov 2022 20:50:21 +0000
To: public-webauthn@w3.org
Message-ID: <issue_comment.created-1322624437-1669063819-sysbot+gh@w3.org>

> I think that the scope of webauthn can be way larger

There is no current intention to expand the scope of WebAuthn. WebAuthn is designed to allow a website to sign a user in using a strong, phishing resistant public key credential, and it does that very well. Signing arbitrary data could actually harm some of the security and privacy properties of the FIDO2/WebAuthn stack.

-- 
GitHub Notification of comment by timcappalli
Please view or discuss this issue at https://github.com/w3c/webauthn/issues/1823#issuecomment-1322624437 using your GitHub account


-- 
Sent via github-notify-ml as configured in https://github.com/w3c/github-notify-ml-config

Received on Monday, 21 November 2022 20:50:22 UTC