Allow platform
-based self attestation with non-zero AAGUID when AttestationConveyancePreferenceOption
"none"
is used
#2146
Labels
In L3 platform-based authenticators are allowed AAGUIDs that are not all-zero even when
credentialCreationData.
attestationConveyancePreferenceOption
is"none"
. As a result, there is no additional privacy obtained by replacing self attestation with none attestation. Specifically the steps describing constructCredentialAlg in § 5.1.3. should be changed from:to
The text was updated successfully, but these errors were encountered: