- From: Martin Kreichgauer via GitHub <noreply@w3.org>
- Date: Wed, 28 Jan 2026 16:59:16 +0000
- To: public-webauthn@w3.org
> However my concern with such a change is that it'd break all of the existing use of virtual authenticators that RPs have written into their automated tests that expect the sign count to increment automatically because of current virtual authenticator behavior That behavior isn't standardized though, right? And if asserting anything about signature counters should be exceptionally rare in production, shouldn't it equally be exceptionally be rare in virtual authenticator tests? I have a hard time believing that there are deployments that actually enforce this in any meaningful way. IMO mimicking real world behavior is more important here than preserving historical behavior. -- GitHub Notification of comment by kreichgauer Please view or discuss this issue at https://github.com/w3c/webauthn/issues/2363#issuecomment-3812568208 using your GitHub account -- Sent via github-notify-ml as configured in https://github.com/w3c/github-notify-ml-config
Received on Wednesday, 28 January 2026 16:59:17 UTC