[webauthn] §6.1. Steps to generate authenticator data should include BE and BS flags (#2064) from Emil Lundberg via GitHub on 2024-04-30 (public-webauthn@w3.org from April 2024)

From: Emil Lundberg via GitHub <sysbot+gh@w3.org>
Date: Tue, 30 Apr 2024 13:04:52 +0000
To: public-webauthn@w3.org
Message-ID: <issues.opened-2271425215-1714482289-sysbot+gh@w3.org>

emlun has just created a new issue for https://github.com/w3c/webauthn:

== §6.1. Steps to generate authenticator data should include BE and BS flags ==
## Proposed Change

[§6.1. Authenticator Data](https://www.w3.org/TR/webauthn-3/#sctn-authenticator-data) defines a procedure "[**Authenticators perform the following steps to generate an authenticator data structure**](https://www.w3.org/TR/webauthn-3/#authenticator-data-perform-the-following-steps-to-generate-an-authenticator-data-structure)", which includes the step:

>- The [UP](https://www.w3.org/TR/webauthn-3/#authdata-flags-up) [flag](https://www.w3.org/TR/webauthn-3/#authdata-flags) SHALL be set if and only if the authenticator performed a [test of user presence](https://www.w3.org/TR/webauthn-3/#test-of-user-presence). The [UV](https://www.w3.org/TR/webauthn-3/#authdata-flags-uv) [flag](https://www.w3.org/TR/webauthn-3/#authdata-flags) SHALL be set if and only if the authenticator performed [user verification](https://www.w3.org/TR/webauthn-3/#user-verification). The RFU bits SHALL be set to zero.

This step, or perhaps a new subsequent step, should also reference setting the BE and BS flags.


Please view or discuss this issue at https://github.com/w3c/webauthn/issues/2064 using your GitHub account


-- 
Sent via github-notify-ml as configured in https://github.com/w3c/github-notify-ml-config

Received on Tuesday, 30 April 2024 13:04:53 UTC