Friday, 30 September 2022
- [webauthn] Pull Request: Conditional request allowList credential filtering
- Conditional UI ready for testing on Chrome Canary
Thursday, 29 September 2022
- Re: [webauthn] Device-bound key extension (#1658)
- Re: [webauthn] Device-bound key extension (#1658)
- Re: [webauthn] Add a way to use webauthn without Javascript (#1255)
Wednesday, 28 September 2022
- Re: [webauthn] Allow for credential creation in a cross-origin iframe (#1801)
- Re: [webauthn] Requirements for security of MDC, DPK and attestation (#1808)
- Re: [webauthn] Requirements for security of MDC, DPK and attestation (#1808)
- Re: [webauthn] Requirements for security of MDC, DPK and attestation (#1808)
Tuesday, 27 September 2022
- [w3c/webauthn] 759ce0: DPK is only valid for backup eligible credentials.
- [webauthn] new commits pushed by agl
- [w3c/webauthn] 9bd0e3: Apply Shane's suggestions
- [webauthn] new commits pushed by agl
- Weekly github digest (WebAuthn)
- Re: [webauthn] Clarity on challenge length (#1803)
Monday, 26 September 2022
- Re: [webauthn] Requirements for security of MDC, DPK and attestation (#1808)
- Re: [webauthn] Requirements for security of MDC, DPK and attestation (#1808)
- Closed: [webauthn] Requirements for security of MDC, DPK and attestation (#1808)
- Re: [webauthn] Requirements for security of MDC, DPK and attestation (#1808)
- Re: [webauthn] hmacCreateSecret (#1809)
- Closed: [webauthn] hmacCreateSecret (#1809)
- Re: [webauthn] hmacCreateSecret (#1809)
- [webauthn] hmacCreateSecret (#1809)
- Re: [webauthn] Clarity on challenge length (#1803)
- Re: [webauthn] Requirements for security of MDC, DPK and attestation (#1808)
- Re: [webauthn] Clarity on challenge length (#1803)
Saturday, 24 September 2022
- Re: [webauthn] Requirements for security of MDC, DPK and attestation (#1808)
- Re: [webauthn] Requirements for security of MDC, DPK and attestation (#1808)
Friday, 23 September 2022
- Re: [webauthn] Requirements for security of MDC, DPK and attestation (#1808)
- Re: [webauthn] Move state updates to last in in RP verification steps (#1807)
- Re: [webauthn] Determining length of `attestedCredentialData` when authenticator extensions present. (#1012)
- Re: [webauthn] Determining length of `attestedCredentialData` when authenticator extensions present. (#1012)
- [webauthn] Requirements for security of MDC, DPK and attestation (#1808)
Thursday, 22 September 2022
- Re: [webauthn] Support a "create or get [or replace]" credential re-association operation (#1568)
- Re: [webauthn] Support a "create or get [or replace]" credential re-association operation (#1568)
- [webauthn] Pull Request: Move state updates to last in in RP verification steps
- [webauthn] new commits pushed by emlun
- [w3c/webauthn] 2ccb9f: Change definition type of credential record items ...
- [webauthn] Pull Request: Fix incorrect use of options variable: extract signal and mediation attributes first
- [webauthn] Pull Request: Fix incorrect use of options variables in create() and get()
- [w3c/webauthn] 3a543c: Fix incorrect use of options variables in create()...
- [w3c/webauthn] 70b6f6: Fix incorrect use of options variables in create()...
- [webauthn] new commits pushed by emlun
- [webauthn] new commits pushed by emlun
- [w3c/webauthn] 9d8f85: Merge pull request #1773 from w3c/credential-record
- [webauthn] new commits pushed by github-actions[bot]
- [w3c/webauthn]
- [w3c/webauthn] 002bb4: Extract Credential Record abstraction
- [webauthn] new commits pushed by emlun
- [webauthn] Merged Pull Request: Extract Credential Record abstraction
- Re: [webauthn] Extract Credential Record abstraction (#1773)
- Re: [webauthn] Extract Credential Record abstraction (#1773)
- [w3c/webauthn] 6285f7: Fix reference to ECDSA+hash choice recommendation ...
- [webauthn] new commits pushed by emlun
- Re: [webauthn] Move step 16 of Registration to between 21 and 22 (#1555)
- Re: [webauthn] Extract Credential Record abstraction (#1773)
- [w3c/webauthn] 36b4cc: Add missing type member in credential record creation
- [webauthn] new commits pushed by emlun
- [webauthn] Pull Request: Replace obsolete RFC8152 with RFC9052 and RFC9053
- [w3c/webauthn] 5d0cc6: Replace obsolete RFC8152 with RFC9052 and RFC9053
- [webauthn] new commits pushed by emlun
- [w3c/webauthn] 8ef3de: Replace obsolete RFC8152 with RFC9052 and RFC9053
- [webauthn] new commits pushed by emlun
Wednesday, 21 September 2022
- [webauthn] Clarity on challenge length (#1803)
- Closed: [webauthn] Requirements for attestation for DPK (#1799)
- Re: [webauthn] Requirements for attestation for DPK (#1799)
- [w3c/webauthn] ca7338: Merge pull request #1772 from w3c/issue-1740-backu...
- [webauthn] new commits pushed by github-actions[bot]
- [w3c/webauthn]
- [w3c/webauthn] 1a15f2: Delete unused <dfn>
- Closed: [webauthn] Inconsistencies in backup state flags (#1740)
- [webauthn] new commits pushed by emlun
- [webauthn] Merged Pull Request: Fix inconsistencies in backup state flags
- [w3c/webauthn] 2b797d: Merge pull request #1733 from w3c/issue-1731-code-...
- [w3c/webauthn]
- [webauthn] new commits pushed by github-actions[bot]
- [w3c/webauthn] 4442cb: Narrow claim about MitM resistance to tampering sp...
- Closed: [webauthn] Missing specification on rpId validations when calling credentials.get() from a different origin (#1731)
- [webauthn] Merged Pull Request: Add "Code injection attacks" security consideration
- [webauthn] new commits pushed by emlun
- [w3c/webauthn] ed0b77: Remove now superfluous variable in DPK processing.
- [webauthn] new commits pushed by agl
- [w3c/webauthn] ca1b0c: Add a note to explain how the RP's challenge is in...
- [webauthn] new commits pushed by agl
- 09/21/2022 W3C Web Authentication Meeting
Tuesday, 20 September 2022
Sunday, 18 September 2022
Wednesday, 14 September 2022
- Re: [webauthn] Requirements for attestation for DPK (#1799)
- Re: [webauthn] Update name, displayname and icon for RP and user (#1200)
- Re: [webauthn] Update name, displayname and icon for RP and user (#1200)
- Re: [webauthn] Allow for credential creation in a cross-origin iframe (#1801)
- [webauthn] Pull Request: Allow for credential creation in a cross-origin iframe
Tuesday, 13 September 2022
Monday, 12 September 2022
- Re: [webauthn] Platform authentication registration promotion when the user has authenticated with the external authenticator (#1759)
- Closed: [webauthn] Platform authentication registration promotion when the user has authenticated with the external authenticator (#1759)
- Closed: [webauthn] Authenticator flag to indicate internal knowledge of rk (discoverable credential creation). (#1761)
- Re: [webauthn] Authenticator flag to indicate internal knowledge of rk (discoverable credential creation). (#1761)
- Re: [webauthn] Facility for an RP to indicate a change of displayName to a discoverable credential (#1779)
- Closed: [webauthn] Extend WebAuthn spec to support interoperability in WebExtensions (#1766)
- Re: [webauthn] Extend WebAuthn spec to support interoperability in WebExtensions (#1766)
- Re: [webauthn] Requirements for attestation for DPK (#1799)
- Closed: [webauthn] Add ability to query for feasibility of registering a credential that is backup eligible (#1788)
- Re: [webauthn] Add ability to query for feasibility of registering a credential that is backup eligible (#1788)
- Re: [webauthn] Prescriptive behaviours for Autofill UI (#1800)
- [w3c/webauthn]
- [webauthn] new commits pushed by emlun
- [w3c/webauthn] c8d32e: Trigger PR-preview rebuild
- [webauthn] new commits pushed by emlun
- Re: [webauthn] Support Filtering by Username in Conditional UI (#1793)
- [webauthn] Prescriptive behaviours for Autofill UI (#1800)
- Closed: [webauthn] Must assertions with attestation include attested credential data? (#1792)
- Re: [webauthn] Must assertions with attestation include attested credential data? (#1792)
- Requirements for attestation for DPK
Sunday, 11 September 2022
- Closed: [webauthn] Attestation for DPK(device-bound public key) (#1798)
- Re: [webauthn] Attestation for DPK(device-bound public key) (#1798)
Saturday, 10 September 2022
- [webauthn] Requirements for attestation for DPK (#1799)
- [w3c/webauthn] d67189: Address emlun's comments.
- [webauthn] new commits pushed by agl
- [webauthn] Attestation for DPK(device-bound public key) (#1798)
- [w3c/webauthn] 8966fe: Apply emlun's suggestions from code review
- [webauthn] new commits pushed by agl
Friday, 9 September 2022
- Re: [webauthn] Support Filtering by Username in Conditional UI (#1793)
- Re: [webauthn] Support Filtering by Username in Conditional UI (#1793)
- Re: [webauthn] Support Filtering by Username in Conditional UI (#1793)
- Re: [webauthn] Support Filtering by Username in Conditional UI (#1793)
Thursday, 8 September 2022
- Re: [webauthn] Support Filtering by Username in Conditional UI (#1793)
- Re: [webauthn] Support Filtering by Username in Conditional UI (#1793)
- Re: [webauthn] Support Filtering by Username in Conditional UI (#1793)
- Re: [webauthn] Support Filtering by Username in Conditional UI (#1793)
- Re: [webauthn] Support Filtering by Username in Conditional UI (#1793)
- [webauthn] Dependencies section is out of date and duplicates terms index (#1797)
- [webauthn] Pull Request: Fix broken cross-spec references
- [w3c/webauthn] 91c3ab: Fix reference to "get a copy of the bytes held by ...
- [webauthn] new commits pushed by emlun
- Re: [webauthn] Support Filtering by Username in Conditional UI (#1793)
- Re: [webauthn] Support Filtering by Username in Conditional UI (#1793)
- Re: [webauthn] Support Filtering by Username in Conditional UI (#1793)
- Re: [webauthn] Support Filtering by Username in Conditional UI (#1793)
- Re: [webauthn] Support Filtering by Username in Conditional UI (#1793)
- Closed: [webauthn] continuous assertion (#1785)
- Re: [webauthn] continuous assertion (#1785)
- Re: [webauthn] Extend WebAuthn spec to support interoperability in WebExtensions (#1766)
- Re: [webauthn] Support Filtering by Username in Conditional UI (#1793)
- Re: [webauthn] Enterprise attestaion is a bool in WebAuthn and an Int in CTAP2.1 (#1795)
Wednesday, 7 September 2022
- Re: [webauthn] Specify what happens when a WebAuthn request is issued while there is another one in progress (#1790)
- Closed: [webauthn] Specify what happens when a WebAuthn request is issued while there is another one in progress (#1790)
- Closed: [webauthn] Conditional Mediation feature discovery should really return a promise (#1745)
- [webauthn] Enterprise attestaion is a bool in WebAuthn and an int in CTAP (#1795)
- Re: [webauthn] Support Filtering by Username in Conditional UI (#1793)
- Re: [webauthn] Support Filtering by Username in Conditional UI (#1793)
- Re: [webauthn] Support Filtering by Username in Conditional UI (#1793)
- Re: [webauthn] Support Filtering by Username in Conditional UI (#1793)
- [webauthn] Broken references in Web Authentication: An API for accessing Public Key Credentials - Level (#1794)
- Re: [webauthn] Support Filtering by Username in Conditional UI (#1793)
- Re: [webauthn] Support Filtering by Username in Conditional UI (#1793)
- Re: [webauthn] Support Filtering by Username in Conditional UI (#1793)
Tuesday, 6 September 2022
Monday, 5 September 2022
- Re: [webauthn] Support Filtering by Username in Conditional UI (#1793)
- Re: [webauthn] Support Filtering by Username in Conditional UI (#1793)
- [webauthn] Support Filtering by Username in Conditional UI (#1793)