Eliot
On 24.10.2023 12:24, Jan-Frederik Rieckers wrote:
On 24.10.23 09:12, Eliot Lear wrote:> Thanks for the draft. Question:Is the intent that the FDO authentication happen each and every time, or just during ownership transfer?The intent is to do a FIDO authentication every time (maybe with the exception of TLS session resumption, Text for that is still TODO).But with CTAP v2 you can trigger silent authentication, so the user does not need to touch their FIDO token every time they need to re-authenticate, the token just needs to be available (which is more complex with hardware tokens like YubiKeys, but very easy with OS-backed FIDO implementations)Cheers, Janfred _______________________________________________ Emu mailing list Emu@ietf.org https://www.ietf.org/mailman/listinfo/emu
OpenPGP_0x87B66B46D9D27A33.asc
Description: OpenPGP public key
OpenPGP_signature.asc
Description: OpenPGP digital signature
_______________________________________________ Emu mailing list Emu@ietf.org https://www.ietf.org/mailman/listinfo/emu