Tim Cappalli
Tim Cappalli
Should we consider supporting RFC6920 hashes as formats for subject identifiers to allow privacy preserving subject declaration? https://www.rfc-editor.org/rfc/rfc6920.html
When someone has a new use case and needs a new event, how can we add those events without going through a full OpenID review process? Is the solution moving...
Should we add an authorization object to the transmitter metadata to describe things like token type, scopes, etc that are required?
Hi - would it be possible to add biometric unlock (Touch ID) with a fallback to PIN, similar to how Bitwarden mobile apps work? It can then require master password...
As far as I (and a few others I talked to) know, there are no production client implementations of the `uvm` extension. We should consider removing it from WebAuthn L3.
- Adds `enterpriseAttestation` to getClientClientCapabilities enum - Adds blurb to "enterprise" definition that clients should include it Resolves #1742 *** Preview | Diff
Adds the `timeSinceUv` authenticator extension as defined in #2034 Open questions for WG discussion: 1. Technically an out of band vault unlock for passkey provider doesn't satisfy user verification as...
Changes `conditionalMediation` client capability to `conditionalGet` for consistency with `conditionalCreate`. *** Preview | Diff
webauthn
Please confirm that: * [X] You have read and understood the [requirements for registration](https://tools.ietf.org/html/rfc8615#section-3.1). * [X] You have checked [the registry](https://www.iana.org/assignments/well-known-uris/) and found no current value that meets your needs....
https://w3c.github.io/webauthn/#prf