RSS Feed/News PassKey implementation is not compliant with WebAuthn standard

Status
Not open for further replies.
ENXF NET

ENXF NET

Administrator
Staff member
Administrator
Moderator
+Lifetime VIP+
S.V.I.P.S Member
S.V.I.P Member
V.I.P Member
Collaborate
Registered
Joined
Nov 13, 2018
Messages
26,072
Points
823

Reputation:

https://www.w3.org/TR/webauthn-2/#sctn-user-handle-privacy
Since the user handle is not considered personally identifying information in § 14.4.2 Privacy of personally identifying information Stored in Authenticators, the Relying Party MUST NOT include personally identifying information, e.g., e-mail addresses or usernames, in the user handle. This includes hash values of personally identifying information, unless the hash function is salted with...
Click to expand...
Click to expand...

Read more

Continue reading...
 
Status
Not open for further replies.
Top