Re: [webauthn] The authenticator may hide the credential even if the RP signals unknown credentials (#2192) from Tim Cappalli via GitHub on 2024-10-30 (public-webauthn@w3.org from October 2024)

From: Tim Cappalli via GitHub <sysbot+gh@w3.org>
Date: Wed, 30 Oct 2024 15:06:39 +0000
To: public-webauthn@w3.org
Message-ID: <issue_comment.created-2447455109-1730300797-sysbot+gh@w3.org>

@Kieun what is the specific change you're recommending? I **think** you're suggesting that "hidden" should be removed? 

There was loose consensus inside FIDO that some authenticators may wish to "move a passkey to the trash", which would effectively hide it from a WebAuthn ceremony, and then permanently delete it at a later date. The lifecycle would be authenticator-specific details.

-- 
GitHub Notification of comment by timcappalli
Please view or discuss this issue at https://github.com/w3c/webauthn/issues/2192#issuecomment-2447455109 using your GitHub account


-- 
Sent via github-notify-ml as configured in https://github.com/w3c/github-notify-ml-config

Received on Wednesday, 30 October 2024 15:06:40 UTC