[Superset] Updating credential metadata and requesting deletion of stale credentials

[timcappalli]

This issue is to consolidate a bunch of issues from over the years around deletion of stale credentials, updating properties of existing credentials, etc and provide a single issue to continue discussion. There was general consensus at TPAC 2023 that something like this is needed.

Existing Issues

All of these issues have now been closed. Please continue discussion here.

#1456: Personal information updates & webauthn

Ability to update things like name and displayName without creating a new credential.

#1779: Facility for an RP to indicate a change of displayName to a discoverable credential

Similar to 1456, but specific to displayName

#1560: Cleanup when creating discoverable credentials with attestations

Essentially allow for clean up of stale credentials. For example, a credential that was deleted RP-side, or a credential that doesn't meet RP requirements.

#1696: FIDO credential decommissioning

High Level Requirements

Trends observed in these issues:

• Desire to signal to a client/authenticator that a specific credential is no longer valid and can be deleted
• Desire to signal to a client/authenticator that name and/or displayName has changed