Skip to content

Commit 446d5e5

Browse files
emlungithub-actions[bot]
emlun
and
github-actions[bot]
committed
Merge pull request #2292 from w3c/mm/2268-add-attestationformats-changes-since-L2
SHA: ca16c48 Reason: push, by emlun Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
1 parent 54b74cb commit 446d5e5

File tree

1 file changed

+6
-4
lines changed

1 file changed

+6
-4
lines changed

index.html

Lines changed: 6 additions & 4 deletions
Original file line numberDiff line numberDiff line change
@@ -6,7 +6,7 @@
66
<meta content="ED" name="w3c-status">
77
<meta content="Bikeshed version b25686b9f, updated Fri Mar 14 14:15:20 2025 -0700" name="generator">
88
<link href="https://www.w3.org/TR/webauthn-3/" rel="canonical">
9-
<meta content="86e50a933516932288e81c50e7bfde5c59188abc" name="revision">
9+
<meta content="ca16c48e8b68c183eb80f2602a95063b6e76ae5c" name="revision">
1010
<meta content="dark light" name="color-scheme">
1111
<style type="text/css">
1212
body {
@@ -965,7 +965,7 @@
965965
<div class="head">
966966
<p data-fill-with="logo"><a class="logo" href="https://www.w3.org/"> <img alt="W3C" height="48" src="https://www.w3.org/StyleSheets/TR/2021/logos/W3C" width="72"> </a> </p>
967967
<h1>Web Authentication:<br>An API for accessing Public Key Credentials<br>Level 3</h1>
968-
<p id="w3c-state"><a href="https://www.w3.org/standards/types/#ED">Editor’s Draft</a>, <time class="dt-updated" datetime="2025-05-07">7 May 2025</time></p>
968+
<p id="w3c-state"><a href="https://www.w3.org/standards/types/#ED">Editor’s Draft</a>, <time class="dt-updated" datetime="2025-05-21">21 May 2025</time></p>
969969
<details open>
970970
<summary>More details about this document</summary>
971971
<div data-fill-with="spec-metadata">
@@ -9856,6 +9856,8 @@ <h4 class="heading settled" data-level="18.1.1" id="changes-l3-substantive"><spa
98569856
<p><a href="#sctn-compound-attestation">§ 8.9 Compound Attestation Statement Format</a></p>
98579857
<li data-md>
98589858
<p><a href="#prf-extension">§ 10.1.4 Pseudo-random function extension (prf)</a></p>
9859+
<li data-md>
9860+
<p>Registration parameter <code><code class="idl"><a data-link-type="idl" href="#dom-credentialcreationoptions-publickey" id="ref-for-dom-credentialcreationoptions-publickey⑥">publicKey</a></code>.<code class="idl"><a data-link-type="idl" href="#dom-publickeycredentialcreationoptions-attestationformats" id="ref-for-dom-publickeycredentialcreationoptions-attestationformats③">attestationFormats</a></code></code>: <a href="#dictionary-makecredentialoptions">§ 5.4 Options for Credential Creation (dictionary PublicKeyCredentialCreationOptions)</a></p>
98599861
</ul>
98609862
<h4 class="heading settled" data-level="18.1.2" id="changes-l3-editorial"><span class="secno">18.1.2. </span><span class="content">Editorial Changes</span><a class="self-link" href="#changes-l3-editorial"></a></h4>
98619863
<p>The following changes were made to improve clarity, readability, navigability and similar aspects of the document.</p>
@@ -12504,7 +12506,7 @@ <h2 class="no-num no-ref heading settled" id="idl-index"><span class="content">I
1250412506
"dom-collectedclientdata-tokenbinding": {"dfnID":"dom-collectedclientdata-tokenbinding","dfnText":"tokenBinding","external":false,"refSections":[{"refs":[{"id":"ref-for-dom-collectedclientdata-tokenbinding"},{"id":"ref-for-dom-collectedclientdata-tokenbinding\u2460"}],"title":"5.8.1. Client Data Used in WebAuthn Signatures (dictionary CollectedClientData)"},{"refs":[{"id":"ref-for-dom-collectedclientdata-tokenbinding\u2461"}],"title":"18.1.1. Substantive Changes"}],"url":"#dom-collectedclientdata-tokenbinding"},
1250512507
"dom-collectedclientdata-toporigin": {"dfnID":"dom-collectedclientdata-toporigin","dfnText":"topOrigin","external":false,"refSections":[{"refs":[{"id":"ref-for-dom-collectedclientdata-toporigin"}],"title":"5.1.3. Create a New Credential - PublicKeyCredential\u2019s [[Create]](origin, options, sameOriginWithAncestors) Internal Method"},{"refs":[{"id":"ref-for-dom-collectedclientdata-toporigin\u2460"}],"title":"5.1.4.1. PublicKeyCredential\u2019s [[DiscoverFromExternalSource]](origin, options, sameOriginWithAncestors) Internal Method"},{"refs":[{"id":"ref-for-dom-collectedclientdata-toporigin\u2461"}],"title":"5.8.1. Client Data Used in WebAuthn Signatures (dictionary CollectedClientData)"},{"refs":[{"id":"ref-for-dom-collectedclientdata-toporigin\u2462"},{"id":"ref-for-dom-collectedclientdata-toporigin\u2463"},{"id":"ref-for-dom-collectedclientdata-toporigin\u2464"}],"title":"5.8.1.1. Serialization"},{"refs":[{"id":"ref-for-dom-collectedclientdata-toporigin\u2465"},{"id":"ref-for-dom-collectedclientdata-toporigin\u2466"}],"title":"5.8.1.2. Limited Verification Algorithm"},{"refs":[{"id":"ref-for-dom-collectedclientdata-toporigin\u2467"}],"title":"5.8.1.3. Future development"},{"refs":[{"id":"ref-for-dom-collectedclientdata-toporigin\u2468"},{"id":"ref-for-dom-collectedclientdata-toporigin\u2460\u24ea"}],"title":"7.1. Registering a New Credential"},{"refs":[{"id":"ref-for-dom-collectedclientdata-toporigin\u2460\u2460"},{"id":"ref-for-dom-collectedclientdata-toporigin\u2460\u2461"}],"title":"7.2. Verifying an Authentication Assertion"},{"refs":[{"id":"ref-for-dom-collectedclientdata-toporigin\u2460\u2462"},{"id":"ref-for-dom-collectedclientdata-toporigin\u2460\u2463"},{"id":"ref-for-dom-collectedclientdata-toporigin\u2460\u2464"},{"id":"ref-for-dom-collectedclientdata-toporigin\u2460\u2465"},{"id":"ref-for-dom-collectedclientdata-toporigin\u2460\u2466"},{"id":"ref-for-dom-collectedclientdata-toporigin\u2460\u2467"}],"title":"13.4.9. Validating the origin of a credential"},{"refs":[{"id":"ref-for-dom-collectedclientdata-toporigin\u2460\u2468"}],"title":"16. Test Vectors"},{"refs":[{"id":"ref-for-dom-collectedclientdata-toporigin\u2461\u24ea"}],"title":"18.1.1. Substantive Changes"}],"url":"#dom-collectedclientdata-toporigin"},
1250612508
"dom-collectedclientdata-type": {"dfnID":"dom-collectedclientdata-type","dfnText":"type","external":false,"refSections":[{"refs":[{"id":"ref-for-dom-collectedclientdata-type"}],"title":"5.1.3. Create a New Credential - PublicKeyCredential\u2019s [[Create]](origin, options, sameOriginWithAncestors) Internal Method"},{"refs":[{"id":"ref-for-dom-collectedclientdata-type\u2460"}],"title":"5.1.4.1. PublicKeyCredential\u2019s [[DiscoverFromExternalSource]](origin, options, sameOriginWithAncestors) Internal Method"},{"refs":[{"id":"ref-for-dom-collectedclientdata-type\u2461"}],"title":"5.8.1. Client Data Used in WebAuthn Signatures (dictionary CollectedClientData)"},{"refs":[{"id":"ref-for-dom-collectedclientdata-type\u2462"},{"id":"ref-for-dom-collectedclientdata-type\u2463"}],"title":"5.8.1.1. Serialization"},{"refs":[{"id":"ref-for-dom-collectedclientdata-type\u2464"}],"title":"5.8.1.2. Limited Verification Algorithm"},{"refs":[{"id":"ref-for-dom-collectedclientdata-type\u2465"}],"title":"5.8.1.3. Future development"},{"refs":[{"id":"ref-for-dom-collectedclientdata-type\u2466"}],"title":"7.1. Registering a New Credential"},{"refs":[{"id":"ref-for-dom-collectedclientdata-type\u2467"}],"title":"7.2. Verifying an Authentication Assertion"}],"url":"#dom-collectedclientdata-type"},
12507-
"dom-credentialcreationoptions-publickey": {"dfnID":"dom-credentialcreationoptions-publickey","dfnText":"publicKey","external":false,"refSections":[{"refs":[{"id":"ref-for-dom-credentialcreationoptions-publickey"}],"title":"4. Terminology"},{"refs":[{"id":"ref-for-dom-credentialcreationoptions-publickey\u2460"},{"id":"ref-for-dom-credentialcreationoptions-publickey\u2461"},{"id":"ref-for-dom-credentialcreationoptions-publickey\u2462"}],"title":"5.1.3. Create a New Credential - PublicKeyCredential\u2019s [[Create]](origin, options, sameOriginWithAncestors) Internal Method"},{"refs":[{"id":"ref-for-dom-credentialcreationoptions-publickey\u2463"}],"title":"7.1. Registering a New Credential"},{"refs":[{"id":"ref-for-dom-credentialcreationoptions-publickey\u2464"}],"title":"18.1.1. Substantive Changes"}],"url":"#dom-credentialcreationoptions-publickey"},
12509+
"dom-credentialcreationoptions-publickey": {"dfnID":"dom-credentialcreationoptions-publickey","dfnText":"publicKey","external":false,"refSections":[{"refs":[{"id":"ref-for-dom-credentialcreationoptions-publickey"}],"title":"4. Terminology"},{"refs":[{"id":"ref-for-dom-credentialcreationoptions-publickey\u2460"},{"id":"ref-for-dom-credentialcreationoptions-publickey\u2461"},{"id":"ref-for-dom-credentialcreationoptions-publickey\u2462"}],"title":"5.1.3. Create a New Credential - PublicKeyCredential\u2019s [[Create]](origin, options, sameOriginWithAncestors) Internal Method"},{"refs":[{"id":"ref-for-dom-credentialcreationoptions-publickey\u2463"}],"title":"7.1. Registering a New Credential"},{"refs":[{"id":"ref-for-dom-credentialcreationoptions-publickey\u2464"},{"id":"ref-for-dom-credentialcreationoptions-publickey\u2465"}],"title":"18.1.1. Substantive Changes"}],"url":"#dom-credentialcreationoptions-publickey"},
1250812510
"dom-credentialpropertiesoutput-rk": {"dfnID":"dom-credentialpropertiesoutput-rk","dfnText":"rk","external":false,"refSections":[{"refs":[{"id":"ref-for-dom-credentialpropertiesoutput-rk"}],"title":"5.4.6. Resident Key Requirement Enumeration (enum ResidentKeyRequirement)"},{"refs":[{"id":"ref-for-dom-credentialpropertiesoutput-rk\u2460"},{"id":"ref-for-dom-credentialpropertiesoutput-rk\u2461"},{"id":"ref-for-dom-credentialpropertiesoutput-rk\u2462"},{"id":"ref-for-dom-credentialpropertiesoutput-rk\u2463"},{"id":"ref-for-dom-credentialpropertiesoutput-rk\u2464"},{"id":"ref-for-dom-credentialpropertiesoutput-rk\u2465"},{"id":"ref-for-dom-credentialpropertiesoutput-rk\u2466"},{"id":"ref-for-dom-credentialpropertiesoutput-rk\u2467"}],"title":"10.1.3. Credential Properties Extension (credProps)"}],"url":"#dom-credentialpropertiesoutput-rk"},
1250912511
"dom-credentialrequestoptions-publickey": {"dfnID":"dom-credentialrequestoptions-publickey","dfnText":"publicKey","external":false,"refSections":[{"refs":[{"id":"ref-for-dom-credentialrequestoptions-publickey"}],"title":"4. Terminology"},{"refs":[{"id":"ref-for-dom-credentialrequestoptions-publickey\u2460"},{"id":"ref-for-dom-credentialrequestoptions-publickey\u2461"},{"id":"ref-for-dom-credentialrequestoptions-publickey\u2462"}],"title":"5.1.4.1. PublicKeyCredential\u2019s [[DiscoverFromExternalSource]](origin, options, sameOriginWithAncestors) Internal Method"},{"refs":[{"id":"ref-for-dom-credentialrequestoptions-publickey\u2463"}],"title":"7.2. Verifying an Authentication Assertion"}],"url":"#dom-credentialrequestoptions-publickey"},
1251012512
"dom-currentuserdetailsoptions-displayname": {"dfnID":"dom-currentuserdetailsoptions-displayname","dfnText":"displayName","external":false,"refSections":[{"refs":[{"id":"ref-for-dom-currentuserdetailsoptions-displayname"}],"title":"5.1.10.4. signalCurrentUserDetails(options)"}],"url":"#dom-currentuserdetailsoptions-displayname"},
@@ -12553,7 +12555,7 @@ <h2 class="no-num no-ref heading settled" id="idl-index"><span class="content">I
1255312555
"dom-publickeycredential-tojson": {"dfnID":"dom-publickeycredential-tojson","dfnText":"toJSON","external":false,"refSections":[{"refs":[{"id":"ref-for-dom-publickeycredential-tojson"}],"title":"5.1. PublicKeyCredential Interface"},{"refs":[{"id":"ref-for-dom-publickeycredential-tojson\u2460"}],"title":"10.1.4. Pseudo-random function extension (prf)"},{"refs":[{"id":"ref-for-dom-publickeycredential-tojson\u2461"}],"title":"18.1.1. Substantive Changes"}],"url":"#dom-publickeycredential-tojson"},
1255412556
"dom-publickeycredential-type-slot": {"dfnID":"dom-publickeycredential-type-slot","dfnText":"[[type]]","external":false,"refSections":[],"url":"#dom-publickeycredential-type-slot"},
1255512557
"dom-publickeycredentialcreationoptions-attestation": {"dfnID":"dom-publickeycredentialcreationoptions-attestation","dfnText":"attestation","external":false,"refSections":[{"refs":[{"id":"ref-for-dom-publickeycredentialcreationoptions-attestation"},{"id":"ref-for-dom-publickeycredentialcreationoptions-attestation\u2460"},{"id":"ref-for-dom-publickeycredentialcreationoptions-attestation\u2461"}],"title":"5.1.3. Create a New Credential - PublicKeyCredential\u2019s [[Create]](origin, options, sameOriginWithAncestors) Internal Method"},{"refs":[{"id":"ref-for-dom-publickeycredentialcreationoptions-attestation\u2462"}],"title":"5.4. Options for Credential Creation (dictionary PublicKeyCredentialCreationOptions)"},{"refs":[{"id":"ref-for-dom-publickeycredentialcreationoptions-attestation\u2463"}],"title":"6.5. Attestation"},{"refs":[{"id":"ref-for-dom-publickeycredentialcreationoptions-attestation\u2464"}],"title":"18.1.1. Substantive Changes"}],"url":"#dom-publickeycredentialcreationoptions-attestation"},
12556-
"dom-publickeycredentialcreationoptions-attestationformats": {"dfnID":"dom-publickeycredentialcreationoptions-attestationformats","dfnText":"attestationFormats","external":false,"refSections":[{"refs":[{"id":"ref-for-dom-publickeycredentialcreationoptions-attestationformats"}],"title":"5.1.3. Create a New Credential - PublicKeyCredential\u2019s [[Create]](origin, options, sameOriginWithAncestors) Internal Method"},{"refs":[{"id":"ref-for-dom-publickeycredentialcreationoptions-attestationformats\u2460"}],"title":"5.4. Options for Credential Creation (dictionary PublicKeyCredentialCreationOptions)"},{"refs":[{"id":"ref-for-dom-publickeycredentialcreationoptions-attestationformats\u2461"}],"title":"6.5. Attestation"}],"url":"#dom-publickeycredentialcreationoptions-attestationformats"},
12558+
"dom-publickeycredentialcreationoptions-attestationformats": {"dfnID":"dom-publickeycredentialcreationoptions-attestationformats","dfnText":"attestationFormats","external":false,"refSections":[{"refs":[{"id":"ref-for-dom-publickeycredentialcreationoptions-attestationformats"}],"title":"5.1.3. Create a New Credential - PublicKeyCredential\u2019s [[Create]](origin, options, sameOriginWithAncestors) Internal Method"},{"refs":[{"id":"ref-for-dom-publickeycredentialcreationoptions-attestationformats\u2460"}],"title":"5.4. Options for Credential Creation (dictionary PublicKeyCredentialCreationOptions)"},{"refs":[{"id":"ref-for-dom-publickeycredentialcreationoptions-attestationformats\u2461"}],"title":"6.5. Attestation"},{"refs":[{"id":"ref-for-dom-publickeycredentialcreationoptions-attestationformats\u2462"}],"title":"18.1.1. Substantive Changes"}],"url":"#dom-publickeycredentialcreationoptions-attestationformats"},
1255712559
"dom-publickeycredentialcreationoptions-authenticatorselection": {"dfnID":"dom-publickeycredentialcreationoptions-authenticatorselection","dfnText":"authenticatorSelection","external":false,"refSections":[{"refs":[{"id":"ref-for-dom-publickeycredentialcreationoptions-authenticatorselection"},{"id":"ref-for-dom-publickeycredentialcreationoptions-authenticatorselection\u2460"},{"id":"ref-for-dom-publickeycredentialcreationoptions-authenticatorselection\u2461"},{"id":"ref-for-dom-publickeycredentialcreationoptions-authenticatorselection\u2462"},{"id":"ref-for-dom-publickeycredentialcreationoptions-authenticatorselection\u2463"},{"id":"ref-for-dom-publickeycredentialcreationoptions-authenticatorselection\u2464"},{"id":"ref-for-dom-publickeycredentialcreationoptions-authenticatorselection\u2465"},{"id":"ref-for-dom-publickeycredentialcreationoptions-authenticatorselection\u2466"}],"title":"5.1.3. Create a New Credential - PublicKeyCredential\u2019s [[Create]](origin, options, sameOriginWithAncestors) Internal Method"},{"refs":[{"id":"ref-for-dom-publickeycredentialcreationoptions-authenticatorselection\u2467"}],"title":"5.4. Options for Credential Creation (dictionary PublicKeyCredentialCreationOptions)"},{"refs":[{"id":"ref-for-dom-publickeycredentialcreationoptions-authenticatorselection\u2468"}],"title":"5.4.6. Resident Key Requirement Enumeration (enum ResidentKeyRequirement)"},{"refs":[{"id":"ref-for-dom-publickeycredentialcreationoptions-authenticatorselection\u2460\u24ea"}],"title":"10.1.5. Large blob storage extension (largeBlob)"}],"url":"#dom-publickeycredentialcreationoptions-authenticatorselection"},
1255812560
"dom-publickeycredentialcreationoptions-challenge": {"dfnID":"dom-publickeycredentialcreationoptions-challenge","dfnText":"challenge","external":false,"refSections":[{"refs":[{"id":"ref-for-dom-publickeycredentialcreationoptions-challenge"}],"title":"5.1.3. Create a New Credential - PublicKeyCredential\u2019s [[Create]](origin, options, sameOriginWithAncestors) Internal Method"},{"refs":[{"id":"ref-for-dom-publickeycredentialcreationoptions-challenge\u2460"}],"title":"5.4. Options for Credential Creation (dictionary PublicKeyCredentialCreationOptions)"},{"refs":[{"id":"ref-for-dom-publickeycredentialcreationoptions-challenge\u2461"}],"title":"7.1. Registering a New Credential"},{"refs":[{"id":"ref-for-dom-publickeycredentialcreationoptions-challenge\u2462"}],"title":"13.4.3. Cryptographic Challenges"},{"refs":[{"id":"ref-for-dom-publickeycredentialcreationoptions-challenge\u2463"},{"id":"ref-for-dom-publickeycredentialcreationoptions-challenge\u2464"}],"title":"16. Test Vectors"}],"url":"#dom-publickeycredentialcreationoptions-challenge"},
1255912561
"dom-publickeycredentialcreationoptions-excludecredentials": {"dfnID":"dom-publickeycredentialcreationoptions-excludecredentials","dfnText":"excludeCredentials","external":false,"refSections":[{"refs":[{"id":"ref-for-dom-publickeycredentialcreationoptions-excludecredentials"}],"title":"5.1.3. Create a New Credential - PublicKeyCredential\u2019s [[Create]](origin, options, sameOriginWithAncestors) Internal Method"},{"refs":[{"id":"ref-for-dom-publickeycredentialcreationoptions-excludecredentials\u2460"}],"title":"5.1.3.1. Create Request Exceptions"},{"refs":[{"id":"ref-for-dom-publickeycredentialcreationoptions-excludecredentials\u2461"}],"title":"5.4. Options for Credential Creation (dictionary PublicKeyCredentialCreationOptions)"},{"refs":[{"id":"ref-for-dom-publickeycredentialcreationoptions-excludecredentials"},{"id":"ref-for-dom-publickeycredentialcreationoptions-excludecredentials"},{"id":"ref-for-dom-publickeycredentialcreationoptions-excludecredentials"}],"title":"10.1.2. FIDO AppID Exclusion Extension (appidExclude)"},{"refs":[{"id":"ref-for-dom-publickeycredentialcreationoptions-excludecredentials\u2462"}],"title":"13.4.6. Credential Loss and Key Mobility"},{"refs":[{"id":"ref-for-dom-publickeycredentialcreationoptions-excludecredentials\u2463"},{"id":"ref-for-dom-publickeycredentialcreationoptions-excludecredentials\u2464"}],"title":"14.5.1. Registration Ceremony Privacy"}],"url":"#dom-publickeycredentialcreationoptions-excludecredentials"},

0 commit comments

Comments
 (0)