Re: [webauthn] Should race condition be added as a reason for a signature counter not increasing? (#2172) from Nina Satragno via GitHub on 2024-10-23 (public-webauthn@w3.org from October 2024)

From: Nina Satragno via GitHub <sysbot+gh@w3.org>
Date: Wed, 23 Oct 2024 18:38:35 +0000
To: public-webauthn@w3.org
Message-ID: <issue_comment.created-2433141923-1729708712-sysbot+gh@w3.org>

> This primarily affects passkey flows and not second-factor ones; since for the latter, RPs can either force at most one active ceremony per credential or use the signCount at the time the ceremony began to compare to.

The RP could snapshot all signCount for all authenticators associated to the user at the time the ceremony began to make that fix work for empty allow lists.

-- 
GitHub Notification of comment by nsatragno
Please view or discuss this issue at https://github.com/w3c/webauthn/issues/2172#issuecomment-2433141923 using your GitHub account


-- 
Sent via github-notify-ml as configured in https://github.com/w3c/github-notify-ml-config

Received on Wednesday, 23 October 2024 18:38:36 UTC