Skip to content

Commit 3e3cfc3

Browse files
emlunemlun
authored
Merge pull request #2301 from w3c/history-since-l3-wd2
Add change history since Level 3 Working Draft 2
2 parents 3bcf9d5 + 17d5b9f commit 3e3cfc3

File tree

1 file changed

+27
-1
lines changed

1 file changed

+27
-1
lines changed

index.bs

Lines changed: 27 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -9964,6 +9964,32 @@ for their contributions as our W3C Team Contacts.
99649964

99659965
This section summarizes the significant changes that have been made to this specification over time.
99669966

9967+
## Changes since Web Authentication Level 3 Working draft 2 [[webauthn-3-20250127]] ## {#changes-since-l3-wd2}
9968+
9969+
*These changes will be merged into the next section when finalizing Level 3.
9970+
Changes to content that was not yet present in Level 2 are listed with a leading "(\*)" mark
9971+
and will then be deleted from the merged change history.*
9972+
9973+
Normative changes:
9974+
9975+
- (*) Added dictionary extensions to {{AuthenticationExtensionsClientInputsJSON}}
9976+
and {{AuthenticationExtensionsClientOutputsJSON}} in definitions of extensions.
9977+
- Added recommendation against using {{COSEAlgorithmIdentifier}} values -9, -51, -52 and -19
9978+
in {{PublicKeyCredentialCreationOptions/pubKeyCredParams}}.
9979+
- Added requirement for ESP256 (-9), ESP384 (-51) and ESP512 (-52) public keys to use uncompressed form: [[#sctn-alg-identifier]]
9980+
9981+
Editorial changes:
9982+
9983+
- (*) Fixed section heading levels of test vectors subsections: [[webauthn-3-20250127#sctn-test-vectors]]
9984+
- Removed outdated notes about permissions policy in [[webauthn-3-20250127#sctn-isUserVerifyingPlatformAuthenticatorAvailable]]
9985+
and [[webauthn-3-20250127#sctn-getClientCapabilities]].
9986+
- Added algorithm -8 (EdDSA) to example code in [[webauthn-3-20250127#sctn-sample-registration]].
9987+
- (*) Clarified meaning of `prf` extension output `enabled`: [[webauthn-3-20250127#dom-authenticationextensionsprfoutputs-enabled]]
9988+
- (*) Fixed mistake in how test vectors were generated in [[webauthn-3-20250127#test-vectors-extensions-prf-ctap]].
9989+
- (*) Changed Ed25519 test vectors to be generated from the seed `'packed.EdDSA'` instead of `'packed.Ed25519'`: [[#sctn-test-vectors-packed-eddsa]]
9990+
- (*) Added Ed448 test vectors: [[#sctn-test-vectors-packed-ed448]]
9991+
9992+
99679993
## Changes since Web Authentication Level 2 [[webauthn-2-20210408]] ## {#changes-since-l2}
99689994

99699995
### Substantive Changes ### {#changes-l3-substantive}
@@ -9973,7 +9999,7 @@ The following changes were made to the [=Web Authentication API=] and the way it
99739999
Changes:
997410000

997510001
- Updated timeout guidance: [[#sctn-timeout-recommended-range]]
9976-
- `uvm` extension no longer included; see instead L2 [[webauthn-2-20210408]]
10002+
- `uvm` extension no longer included; see instead L2 [[webauthn-2-20210408]].
997710003
- [=authData/attestedCredentialData/aaguid=] in [=attested credential data=] is no longer zeroed
997810004
when {{PublicKeyCredentialCreationOptions/attestation}} preference is {{AttestationConveyancePreference/none}}: [[#sctn-createCredential]]
997910005

0 commit comments

Comments
 (0)