- From: My1 via GitHub <noreply@w3.org>
- Date: Wed, 08 Oct 2025 18:44:42 +0000
- To: public-webauthn@w3.org
Backwards compat to what tho, there iirc has been no other backend to prf the first place, has there? And if platform authenticators had something, to my experience those were intrinsically alwaysuv anyway. I would think to either just make it that webauthn can just access it with uv for all backends or let the ctap2 hmac secret style having the secret split between uv and non-uv stay for new backends, as the way it's currently defined would allow easy access to the output without uv in future potential backends, which is my main worry. -- GitHub Notification of comment by My1 Please view or discuss this issue at https://github.com/w3c/webauthn/issues/2337#issuecomment-3382786007 using your GitHub account -- Sent via github-notify-ml as configured in https://github.com/w3c/github-notify-ml-config
Received on Wednesday, 8 October 2025 18:44:43 UTC