Thursday, 31 October 2024
Wednesday, 30 October 2024
- Event Canceled: Web Authentication weekly
- Re: [webauthn] Add `challengeUrl` (#2152)
- Re: [webauthn] Clarify use creating and verifying TPM attestation statements. (#2193)
- Re: [webauthn] Cross-window `Virtual Authenticator Database` (#2117)
- Re: [webauthn] Cross-window `Virtual Authenticator Database` (#2117)
- Re: [webauthn] Remove authenticatorDisplayName from L3 (#2187)
- Re: [webauthn] Cross-window `Virtual Authenticator Database` (#2117)
- Re: [webauthn] Remove authenticatorDisplayName from L3 (#2187)
- Re: [webauthn] Move extension processing to after signature verification, and modernize it (#2167)
- Re: [webauthn] The authenticator may hide the credential even if the RP signals unknown credentials (#2192)
- Re: [webauthn] The authenticator may hide the credential even if the RP signals unknown credentials (#2192)
- Re: [webauthn] The authenticator may hide the credential even if the RP signals unknown credentials (#2192)
- Re: [webauthn] The authenticator may hide the credential even if the RP signals unknown credentials (#2192)
- Re: [webauthn] The authenticator may hide the credential even if the RP signals unknown credentials (#2192)
- [webauthn] Pull Request: Clarify use creating and verifying TPM attestation statements.
- [webauthn] The authenticator may hide the credential even if the RP signals unknown credentials (#2192)
Tuesday, 29 October 2024
- Weekly github digest (WebAuthn)
- 10/30/2024 W3C Web Authentication Meeting Agenda
- [w3c/webauthn] 253ba7: Merge pull request #2183 from w3c/issue-2178-prf-w...
- [webauthn] new commits pushed by github-actions[bot]
- [w3c/webauthn]
- [w3c/webauthn] 8c6827: Add warning about sending PRF outputs to server
- Closed: [webauthn] Add cautionary note about extension data in the ceremony criteria (#2177)
- [webauthn] new commits pushed by emlun
- [webauthn] Merged Pull Request: Add warning about sending PRF outputs to server
Monday, 28 October 2024
- Re: [webauthn] Return more nuanced errors (#2096)
- Re: [webauthn] Return more nuanced errors (#2096)
- Closed: [webauthn] Repo (#2191)
- [webauthn] Repo (#2191)
- [w3c/webauthn] 9a4443: Merge pull request #2166 from w3c/issue-2113-rp-op...
- [webauthn] new commits pushed by github-actions[bot]
- [w3c/webauthn] 099603: Merge pull request #2163 from w3c/issue-2156-rp-op...
- [w3c/webauthn]
- [w3c/webauthn] 561144: Validate CollectedClientData.crossOrigin in RP ops
- [webauthn] new commits pushed by github-actions[bot]
- [webauthn] new commits pushed by emlun
- Closed: [webauthn] CollectedClientData.crossOrigin not referenced in RP ops (#2113)
- [webauthn] Merged Pull Request: Validate CollectedClientData.crossOrigin in RP ops
- [w3c/webauthn]
- [w3c/webauthn]
- [w3c/webauthn]
- [w3c/webauthn]
- [w3c/webauthn]
- [w3c/webauthn] e2ab21: Add aliased link texts for "human palatability"
- [w3c/webauthn] bcd428: Mark Android SafetyNet attestation as deprecated.
- Closed: [webauthn] Add `authenticatorDisplayName` to Step 27 and Step 23 of the registration and authentication ceremonies respectively (#2156)
- [webauthn] new commits pushed by emlun
- [webauthn] Merged Pull Request: Add [credential record/authenticatorDisplayName] handling to RP operations
- [webauthn] new commits pushed by emlun
- Re: [webauthn] Return more nuanced errors (#2096)
Sunday, 27 October 2024
- [w3c/webauthn] 0a6fd7: #2069 remove UVM extension
- [webauthn] new commits pushed by rlin1
- Closed: [webauthn] [spam] (#2189)
- Closed: [webauthn] [spam] (#2190)
- [webauthn] Generate revenue for DavidMashby LLC (#2190)
- [webauthn] Generate revenue (#2189)
Friday, 25 October 2024
- Re: [webauthn] Remove option explicit (#2188)
- Closed: [webauthn] Remove option explicit (#2188)
- [webauthn] Remove option explicit (#2188)
Wednesday, 23 October 2024
- Re: [webauthn] Should race condition be added as a reason for a signature counter not increasing? (#2172)
- [webauthn] Remove authenticatorDisplayName from L3 in favor of adding AAGUID to credProps in L4 (#2187)
- Re: [webauthn] Bit set by the SPC extension should backed up as part of the Public Key Credential Source (#2153)
- Re: [webauthn] Mozilla feedback: Related Origins (#2186)
- Re: [webauthn] Non-incrementing signature counters could be due to race condition (#2176)
- [w3c/webauthn] 063c76: Merge pull request #2176 from sbweeden/sweeden_2172
- [webauthn] new commits pushed by github-actions[bot]
- [w3c/webauthn] 85717c: Address #2172
- Closed: [webauthn] Should race condition be added as a reason for a signature counter not increasing? (#2172)
- [webauthn] new commits pushed by sbweeden
- [webauthn] Merged Pull Request: Non-incrementing signature counters could be due to race condition
- Re: [webauthn] Should race condition be added as a reason for a signature counter not increasing? (#2172)
- Re: [webauthn] Non-incrementing signature counters could be due to race condition (#2176)
- Re: [webauthn] Add [credential record/authenticatorDisplayName] handling to RP operations (#2163)
- Re: [webauthn] Add AAGUID to credProps (#2157)
- [webauthn] Pull Request: Mozilla feedback: Related Origins
- [w3c/webauthn] 875486: No credentials or referrer for RoR well-known
- [webauthn] new commits pushed by timcappalli
Tuesday, 22 October 2024
Tuesday, 15 October 2024
Friday, 11 October 2024
Thursday, 10 October 2024
Wednesday, 9 October 2024
- Re: [webauthn] Add `challengeUrl` (#2152)
- Re: [webauthn] Non-incrementing signature counters could be due to race condition (#2176)
- [w3c/webauthn]
- Re: [webauthn] Add `challengeUrl` (#2152)
- [w3c/webauthn]
- Re: [webauthn] Providing AAGUID on Get (#2157)
- Re: [webauthn] Providing AAGUID on Get (#2157)
- [w3c/webauthn] 98b0c1: Merge pull request #2181 from w3c/lint-unused-def-...
- [webauthn] new commits pushed by github-actions[bot]
- [w3c/webauthn] 581c10: Merge pull request #2182 from w3c/lint-var-effecti...
- [webauthn] new commits pushed by github-actions[bot]
- [w3c/webauthn] 5887b9: Drop definition "User Credential" unused since 2ec...
- [webauthn] new commits pushed by selfissued
- [webauthn] Merged Pull Request: Drop definition "User Credential" unused since PR #2109
- [w3c/webauthn] 1fcb7a: Fix typo in reference to variable |effectiveDomain|
- [webauthn] new commits pushed by selfissued
- [webauthn] Merged Pull Request: Fix typo in reference to variable |effectiveDomain|
- [w3c/webauthn]
- [w3c/webauthn] bdcb93: Don't return an algorithm from [[DiscoverFromExter...
- [w3c/webauthn] de1fcc: Merge pull request #2174 from w3c/issue-2088-prf-t...
- [webauthn] new commits pushed by nicksteele
- Closed: [webauthn] create() and get() return an algorithm, not a credential (#1984)
- [webauthn] Merged Pull Request: Don't return an algorithm from [[DiscoverFromExternalSource]]
- [webauthn] new commits pushed by github-actions[bot]
- [w3c/webauthn] b0258a: Merge pull request #2175 from w3c/example-code-xmp
- [webauthn] new commits pushed by github-actions[bot]
- [w3c/webauthn] 37dacd: Add test vectors for PRF extension
- Closed: [webauthn] Add examples for PRF extension (#2088)
- [webauthn] new commits pushed by nicksteele
- [webauthn] Merged Pull Request: Add test vectors for PRF extension
- [w3c/webauthn] 41c514: Consistently use <xmp> instead of <pre> for code e...
- [w3c/webauthn] 377be2: Merge pull request #2179 from w3c/internal-method-...
- [webauthn] Merged Pull Request: Fix encoding and syntax highlighting of example code
- [webauthn] new commits pushed by selfissued
- [webauthn] new commits pushed by github-actions[bot]
- [w3c/webauthn] 70fb37: Move <dfn> of [[Create]] to heading like [[Discove...
- [webauthn] new commits pushed by selfissued
- [webauthn] Merged Pull Request: Extract macros for referring to [[Create]] and [[DiscoverFromExternalSource]]
- [w3c/webauthn] 39da7b: Remove apparent reference to non-existent [[Get]] ...
- [webauthn] new commits pushed by selfissued
- [webauthn] Merged Pull Request: Remove apparent reference to non-existent [[Get]] internal method
- [webauthn] Handling of non-fully active documents for PublicKeyCredential methods (#2184)
- Re: [webauthn] Should credentials requested with attestation=none include an AAGUID? (#1962)
Tuesday, 8 October 2024
- 10/09/2024 W3C Web Authentication Meeting Agenda
- Re: [webauthn] Add `challengeUrl` (#2152)
- Re: [webauthn] Add `challengeUrl` (#2152)
- Weekly github digest (WebAuthn)
- Re: [webauthn] Should credentials requested with attestation=none include an AAGUID? (#1962)
Monday, 7 October 2024
- Re: [webauthn] Remove apparent reference to non-existent [[Get]] internal method (#2180)
- [w3c/webauthn] 39da7b: Remove apparent reference to non-existent [[Get]] ...
- [webauthn] new commits pushed by emlun
- [w3c/webauthn] c5dfe2: Revert "Simplify reference to default [[CollectFro...
- [webauthn] new commits pushed by emlun
- [webauthn] Closed Pull Request: Add note about possible sensitive data in extensions
- Re: [webauthn] Add note about possible sensitive data in extensions (#2178)
- [webauthn] Pull Request: Add warning about sending PRF outputs to server
- [w3c/webauthn] 8c6827: Add warning about sending PRF outputs to server
- [webauthn] new commits pushed by emlun
- [webauthn] Pull Request: Fix typo in reference to variable |effectiveDomain|
- [w3c/webauthn] 1fcb7a: Fix typo in reference to variable |effectiveDomain|
- [webauthn] new commits pushed by emlun
- [webauthn] Pull Request: Drop definition "User Credential" unused since PR #2109
- [w3c/webauthn] 5887b9: Drop definition "User Credential" unused since 2ec...
- [webauthn] new commits pushed by emlun
- [w3c/webauthn]
- [w3c/webauthn]
- [w3c/webauthn]
- [w3c/webauthn]
- [w3c/webauthn]
- [w3c/webauthn] 25a941: Merge pull request #2165 from w3c/issue-1641-unico...
- [webauthn] new commits pushed by github-actions[bot]
- [w3c/webauthn]
- [w3c/webauthn] 434a77: Fix Unicode example syntax
- Closed: [webauthn] U+ notation incorrect (#1641)
- [webauthn] Merged Pull Request: Fix Unicode example syntax
- [webauthn] new commits pushed by emlun
- [webauthn] Pull Request: Issue 2169 no credman get
- [webauthn] Pull Request: Extract macros for referring to [[Create]] and [[DiscoverFromExternalSource]]
- [w3c/webauthn] 00fbea: Remove apparent reference to non-existent [[Get]] ...
- [w3c/webauthn]
- [webauthn] new commits pushed by emlun
- [webauthn] new commits pushed by emlun
- Re: [webauthn] Add test vectors for PRF extension (#2174)
Friday, 4 October 2024
- [webauthn] Pull Request: Add note about possible sensitive data in extensions
- [webauthn] Add cautionary note about extension data in the ceremony criteria (#2177)
- Re: [webauthn] Add test vectors for PRF extension (#2174)
- Re: [webauthn] Add test vectors for PRF extension (#2174)
- Re: [webauthn] Add test vectors for PRF extension (#2174)
Thursday, 3 October 2024
- [w3c/webauthn] aa8728: Fix create-to-get copy-paste error
- [webauthn] new commits pushed by emlun
- Re: 10/02/2024 W3C Web Authentication Meeting Agenda
- Event Canceled: Web Authentication weekly
- [w3c/webauthn] bb4403: Merge pull request #2159 from w3c/issue-2121-rp-name
- [webauthn] new commits pushed by github-actions[bot]
- [w3c/webauthn] 2e2e3c: Deprecate rp.name
- Closed: [webauthn] Deprecate rp.name (#2121)
- [webauthn] Merged Pull Request: Deprecate rp.name
- [webauthn] new commits pushed by sbweeden
- Re: [webauthn] Deprecate rp.name (#2159)
- Re: [webauthn] Should race condition be added as a reason for a signature counter not increasing? (#2172)
- [webauthn] Pull Request: Address #2172
Wednesday, 2 October 2024
- [w3c/webauthn] a23151: Escape single quote in CDDL-style byte string lite...
- [webauthn] new commits pushed by emlun
- [w3c/webauthn] b953fe: Fix order of middle bytes in Uint32Array example
- [webauthn] new commits pushed by emlun
- Re: [webauthn] Add test vectors for PRF extension (#2174)
- [w3c/webauthn] c2395c: Use 0x0a instead of 0x10 as 11th test vector PRNG ...
- [webauthn] new commits pushed by emlun
- Re: [webauthn] Should race condition be added as a reason for a signature counter not increasing? (#2172)
- Re: [webauthn] Add test vectors for PRF extension (#2174)
- [webauthn] Pull Request: Fix encoding and syntax highlighting of example code
- [w3c/webauthn] 41c514: Consistently use <xmp> instead of <pre> for code e...
- [webauthn] new commits pushed by emlun
- [w3c/webauthn] ebfe87: Use <xmp> instead of <pre>, fixing CDDL highlighting
- [webauthn] new commits pushed by emlun
- [w3c/webauthn] 65f93b: Consistently use <xmp> instead of <pre> for code e...
- [webauthn] new commits pushed by emlun
- Re: [webauthn] Fix Unicode example syntax (#2165)
- Re: [webauthn] Fix Unicode example syntax (#2165)
- Re: [webauthn] [[Get]] method doesn't exist in CredMan (#2169)
- Re: [webauthn] Mark Android SafetyNet attestation as deprecated. (#2155)
- [w3c/webauthn] b5cefc: Merge pull request #2155 from w3c/safetynetdeprecate
- [webauthn] new commits pushed by github-actions[bot]
- [w3c/webauthn]
- [w3c/webauthn] bcd428: Mark Android SafetyNet attestation as deprecated.
- [webauthn] Merged Pull Request: Mark Android SafetyNet attestation as deprecated.
- [webauthn] new commits pushed by emlun
- [w3c/webauthn] 27e0c0: Merge pull request #2161 from zacknewman/Credentia...
- [webauthn] new commits pushed by github-actions[bot]
- [w3c/webauthn] ae49b8: Fix CredentialRequestOptions hyperlink
- Closed: [webauthn] Authentication ceremony `options.publicKey` has the wrong hyperlink (#2160)
- [webauthn] new commits pushed by emlun
- [webauthn] Merged Pull Request: Fix CredentialRequestOptions hyperlink
- [w3c/webauthn] a1fbe6: Merge pull request #2171 from w3c/ack-simoneonofri...
- [webauthn] new commits pushed by github-actions[bot]
- [w3c/webauthn]
- [w3c/webauthn] 9e0fe6: Acknowledge Simone Onofri and Philippe Le Hégaret ...
- [w3c/webauthn] 2be4bd: Merge pull request #2173 from w3c/issue-2170-ack-z...
- [webauthn] new commits pushed by emlun
- [webauthn] Merged Pull Request: Acknowledge Simone Onofri and Philippe Le Hégaret as W3C Team Contacts
- [webauthn] new commits pushed by github-actions[bot]
- [w3c/webauthn]
- [w3c/webauthn] 3b5a8d: Acknowledge Zack Newman for reviews and contributions
- [w3c/webauthn] d4bd24: Add userName and userDisplayName to webdriver
- [webauthn] new commits pushed by emlun
- Closed: [webauthn] Acknowledge @zacknewman's contributions (#2170)
- [webauthn] Merged Pull Request: Acknowledge Zack Newman for reviews and contributions
- [webauthn] new commits pushed by github-actions[bot]
- [w3c/webauthn] 96ed2b: Add userName and userDisplayName to webdriver
- Closed: [webauthn] Add `userName` and `userDisplayName` to WebDriver's `Credential Parameters` JSON object (#2143)
- [webauthn] Merged Pull Request: Add userName and userDisplayName to webdriver
- [webauthn] new commits pushed by nsatragno
- [w3c/webauthn] fe68ea: Apply review suggestion
- [webauthn] new commits pushed by emlun
- RE: 10/02/2024 W3C Web Authentication Meeting Agenda
- 10/02/2024 W3C Web Authentication Meeting Agenda
Tuesday, 1 October 2024
- Re: [webauthn] Mark Android SafetyNet attestation as deprecated. (#2155)
- Re: [webauthn] Add test vectors for PRF extension (#2174)
- Re: [webauthn] Should race condition be added as a reason for a signature counter not increasing? (#2172)
- Re: [webauthn] Mark Android SafetyNet attestation as deprecated. (#2155)
- Re: [webauthn] Should race condition be added as a reason for a signature counter not increasing? (#2172)
- Re: [webauthn] Should race condition be added as a reason for a signature counter not increasing? (#2172)
- [w3c/webauthn] 37dacd: Add test vectors for PRF extension
- [webauthn] new commits pushed by emlun
- [webauthn] Pull Request: Add test vectors for PRF extension
- [w3c/webauthn] fc099a: Fix hmacCreateSecret extension input name
- [webauthn] new commits pushed by emlun
- Re: [webauthn] Acknowledge Zack Newman for reviews and contributions (#2173)
- [webauthn] Pull Request: Acknowledge Zack Newman for reviews and contributions
- [w3c/webauthn] 3b5a8d: Acknowledge Zack Newman for reviews and contributions
- [webauthn] new commits pushed by emlun
- Re: [webauthn] [Editorial] platform authenticator relationship to WebAuthn Client and Client Device (#2164)
- [webauthn] Should race condition be added as a reason for a signature counter not increasing? (#2172)
- Re: [webauthn] Acknowledge @zacknewman's contributions (#2170)
- Re: [webauthn] [Editorial] platform authenticator relationship to WebAuthn Client and Client Device (#2164)
- [webauthn] Pull Request: Acknowledge Simone Onofri and Philippe Le Hégaret as W3C Team Contacts
- [w3c/webauthn] 9e0fe6: Acknowledge Simone Onofri and Philippe Le Hégaret ...
- [webauthn] new commits pushed by emlun
- Re: [webauthn] Mark Android SafetyNet attestation as deprecated. (#2155)
- Re: [webauthn] Mark Android SafetyNet attestation as deprecated. (#2155)
- [webauthn] Acknowledge @zacknewman's contributions (#2170)
- [w3c/webauthn] 4866b1: Fix reference to extensions input in get()
- [webauthn] new commits pushed by emlun
- Re: [webauthn] Fix Unicode example syntax (#2165)
- Weekly github digest (WebAuthn)
- Re: [webauthn] Fix Unicode example syntax (#2165)
- Re: [webauthn] [[Get]] method doesn't exist in CredMan (#2169)
- [webauthn] [[Get]] method doesn't exist in CredMan (#2169)
- [webauthn] Pull Request: Don't return an algorithm from [[DiscoverFromExternalSource]]
- [w3c/webauthn] bdcb93: Don't return an algorithm from [[DiscoverFromExter...
- [webauthn] new commits pushed by emlun
- [w3c/webauthn] ae0c0c: Don't return an algorithm from [[DiscoverFromExter...
- [webauthn] new commits pushed by emlun
- [webauthn] Pull Request: Move extension processing to after signature verification, and modernize it
- [w3c/webauthn] 3fb838: Move extension processing to after signature verif...
- [webauthn] new commits pushed by emlun
- [webauthn] Pull Request: Validate CollectedClientData.crossOrigin in RP ops
- [w3c/webauthn] 561144: Validate CollectedClientData.crossOrigin in RP ops
- [webauthn] new commits pushed by emlun
- Re: [webauthn] Misaligned steps in Section 7.2 (#1913)
- Closed: [webauthn] Misaligned steps in Section 7.2 (#1913)
- [w3c/webauthn] 434a77: Fix Unicode example syntax
- [webauthn] Pull Request: Fix Unicode example syntax
- [webauthn] new commits pushed by emlun
- [w3c/webauthn] a759fe: Fix Unicode example syntax
- [webauthn] new commits pushed by emlun
- Re: [webauthn] [Editorial] platform authenticator relationship to WebAuthn Client and Client Device (#2164)
- Re: [webauthn] [Editorial] platform authenticator relationship to WebAuthn Client and Client Device (#2164)
- [webauthn] [Editorial] platform authenticator relationship to WebAuthn Client and Client Device (#2164)
- Re: [webauthn] Mark Android SafetyNet attestation as deprecated. (#2155)