Ki-Eun Shin

icon indicating an email [email protected]

icon company SK Telecom icon location Seoul, South Korea icon location Security, Authentication, Authorization, Web3 and Open Standards (FIDO, W3C WebAuthn, OAuth, OIDC). W3C WebAuthn WG Invited Experts and Vice Chair at FIDO KWG

Results 35 comments of Ki-Eun Shin

Ambiguous instructions in the Android Key Attestation Statement Format verification procedure

After reading Android key attestation related docs, I'm thinking that the key description may have both `teeEnforced` and `softwareEnforced` at the same time. See the following links: - https://source.android.com/docs/security/features/keystore/implementer-ref#get_key_characteristics So,...

Ambiguous instructions in the Android Key Attestation Statement Format verification procedure

First of all, the KeyDescription may have `teeEnforced` and `softwareEnforced` at the same time. But the thing is that, if the both are presented in the KeyDescription, the same filed...

Include supported extensions in getClientCapabilities.

It took five years since I brought this requirement.

Specify authenticator attachment for authentication operation

@timcappalli Yeah, I think #1884 helps for RPs to offer better user experience during auth.

Document array of string/enum?

We had same issue. But, we've added some workaround by introducing wrapper to set additional attributes which was introduced in #186. For example, if you would like to document collection...