@hillbrad doesn't an attestation protocol including a "deviceId" defeat the privacy-preserving properties of U2F? https://developers.yubico.com/U2F/Attestation_and_Metadata/JSON_Format.html …
-
-
@bascule@hillbrad@Yubico@FIDOAlliance seems to be ID of a "DeviceInfo" object... U2F/UAF devices don't have unique IDs. -
@bascule@hillbrad@Yubico@FIDOAlliance MetadataObject is a metadata about devices. It's provided out of band. Doesn't come from device. -
@davitb@bascule@hillbrad@FIDOAlliance yes, device info. manufacturer & batch ID; VERY LARGE batch. RP can't uniquely ID 1 device -
@Yubico@davitb@hillbrad@FIDOAlliance cool, thanks for clarifying everyone!
End of conversation
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.