- From: Matthew Miller via GitHub <sysbot+gh@w3.org>
- Date: Wed, 03 May 2023 16:27:13 +0000
- To: public-webauthn@w3.org
I think I remember being surprised by an ES256 response from Windows 11 at some point, but with Windows 10 and slower-updating (enterprise) installs of Windows 11 still out in the wild, I don't think RS256 is going away any time soon. > I think this is one of the situations of "if we do not specify default choice, people will just make choices and use everything" But the L3 spec now does suggest a default choice: https://w3c.github.io/webauthn/#dom-publickeycredentialcreationoptions-pubkeycredparams This is, admittedly, based on observation of actual algorithms being returned out in the real world (`-7` and `-257`), with a sprinkling of "this is great to use if it's available" (`-8`.) If at some point an algorithm stops being used, or a newer, better algorithm gains traction in the authenticator space, then we should absolutely update this list. -- GitHub Notification of comment by MasterKale Please view or discuss this issue at https://github.com/w3c/webauthn/issues/1757#issuecomment-1533344671 using your GitHub account -- Sent via github-notify-ml as configured in https://github.com/w3c/github-notify-ml-config
Received on Wednesday, 3 May 2023 16:27:15 UTC