Re: [webauthn] Requirements for security of MDC, DPK and attestation (#1808) from Emil Lundberg via GitHub on 2022-09-28 (public-webauthn@w3.org from September 2022)

From: Emil Lundberg via GitHub <sysbot+gh@w3.org>
Date: Wed, 28 Sep 2022 14:30:27 +0000
To: public-webauthn@w3.org
Message-ID: <issue_comment.created-1261002523-1664375421-sysbot+gh@w3.org>

I agree with @timcappalli - I don't think it's the spec's role to suggest how outside regulations or certifications should judge the features of the spec. DPK is complex, yes, and if anything is unclear we should fix that of course, but I see no reason we should caution against its use.

-- 
GitHub Notification of comment by emlun
Please view or discuss this issue at https://github.com/w3c/webauthn/issues/1808#issuecomment-1261002523 using your GitHub account


-- 
Sent via github-notify-ml as configured in https://github.com/w3c/github-notify-ml-config

Received on Wednesday, 28 September 2022 14:30:29 UTC