W3C home > Mailing lists > Public > w3c-wai-gl@w3.org > October to December 2017

RE: Accessible Authentication and issue responses

From: Alastair Campbell <acampbell@nomensa.com>
Date: Sun, 24 Dec 2017 00:17:49 +0000
To: "Patrick H. Lauke" <redux@splintered.co.uk>, "w3c-wai-gl@w3.org" <w3c-wai-gl@w3.org>
Message-ID: <DB6PR0901MB09197BD375A999541CFC1B8EB9000@DB6PR0901MB0919.eurprd09.prod.outlook.com>
> Because if so...this SC would 
> only prohibit a small number of scenarios (like "enter the first, third 
> and seventh digit of your secret number" or similar)

Also consider the 2 factor cases, where you have to transcribe a 6 digit number in 30 seconds.

The aim is to push sites to allow for other methods, such as WebAuth based hardware/OS methods like Windows Hello.

> Password managers/UAs can autofill other types of information as well. 

Yes, but the reliability is not great, and not standardised AFAICT. Sites do strange things to even username/password fields, expanding the range of things that *might* be remembered by browsers /pw-managers doesn't seem like a great approach.


Received on Sunday, 24 December 2017 00:18:22 UTC

This archive was generated by hypermail 2.4.0 : Thursday, 24 March 2022 21:08:19 UTC