[webauthn] Add support for IDNs and display domain names in Unicode for more user friendly UX (#2087)

• From: Rodrigue de Guerre via GitHub <sysbot+gh@w3.org>
• Date: Fri, 14 Jun 2024 12:51:43 +0000
• To: public-webauthn@w3.org
• Message-ID: <issues.opened-2353313312-1718369500-sysbot+gh@w3.org>

Rodrigue2g has just created a new issue for https://github.com/w3c/webauthn:

== Add support for IDNs and display domain names in Unicode for more user friendly UX ==
## Description
Domain names becoming sometimes difficult to find, I feel like support for IDNs (domain names with special characters) is  becoming more important. Personally I have a special character in my domain name and it brings along its set of complications. One of the prominent one is the UI displayed for the mediation. Even though most browsers now support IDNs, the conditional UI for a passkey ceremony displays my domain name in punycode, which can confuse users, who can end up not trusting the domain (or not understanding what is happening).

As passkey is a new technology, when introducing it to users, I often had feedback of people not really understanding what was happening and what really was a passkey. I know this might take a bit of time to make people really understand and trust passkeys, but I believe that clear UI is essential in order for this to happen. Thus it would better if we could display IDNs in unicode for the UI, while still converting them in punycode behind.

As an example, here is a screen capture of a passkey ceremony on my RP. The domain designø.com becomes in punycode xn--design-gya.com, which can lead to major trust issues or misunderstanding for users. I don't think this would be such an impacting change as well, for example, as you can see below, the username displayed also contains a special charcter, but is still converted to punycode by my RP.

Overall, I think a clear definition on where Unicode or punycode should be used (for authenticators as well) to make sure the right UI is displayed everywhere would make the life of RPs with IDNs a lot easier and confuse a lot less users. 

<img width="465" alt="signin" src="https://github.com/w3c/webauthn/assets/99824035/d2e92c64-136f-4250-89c5-d45cdfefe95b">


Please view or discuss this issue at https://github.com/w3c/webauthn/issues/2087 using your GitHub account


-- 
Sent via github-notify-ml as configured in https://github.com/w3c/github-notify-ml-config

Received on Friday, 14 June 2024 12:51:43 UTC