Merge pull request #2239 from selfissued/mbj-tokenBinding-RESERVED

SHA: 51c239f Reason: push, by selfissued Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
w3c · Jan 22, 2025 · 5618709 · 5618709
1 parent 369729f
commit 5618709
Showing 1 changed file with 6 additions and 4 deletions.
diff --git a/index.html b/index.html
@@ -6,7 +6,7 @@
   <meta content="ED" name="w3c-status">
   <meta content="Bikeshed version c67c745b1, updated Fri Jan 17 14:27:28 2025 -0800" name="generator">
   <link href="https://www.w3.org/TR/webauthn-3/" rel="canonical">
-  <meta content="eef83ec8f2cb92d1ef75ad6382d3a27a87a30872" name="revision">
+  <meta content="51c239fef7f8dfe8e148eeeabc437f38ae785136" name="revision">
   <meta content="dark light" name="color-scheme">
 <style type="text/css">
 body {
@@ -965,7 +965,7 @@
   <div class="head">
    <p data-fill-with="logo"><a class="logo" href="https://www.w3.org/"> <img alt="W3C" height="48" src="https://www.w3.org/StyleSheets/TR/2021/logos/W3C" width="72"> </a> </p>
    <h1>Web Authentication:<br>An API for accessing Public Key Credentials<br>Level 3</h1>
-   <p id="w3c-state"><a href="https://www.w3.org/standards/types/#ED">Editor’s Draft</a>, <time class="dt-updated" datetime="2025-01-20">20 January 2025</time></p>
+   <p id="w3c-state"><a href="https://www.w3.org/standards/types/#ED">Editor’s Draft</a>, <time class="dt-updated" datetime="2025-01-22">22 January 2025</time></p>
    <details open>
     <summary>More details about this document</summary>
     <div data-fill-with="spec-metadata">
@@ -9759,7 +9759,7 @@ <h2 class="heading settled" data-level="17" id="sctn-acknowledgements"><span cla
 for their contributions as our W3C Team Contacts.</p>
    <h2 class="heading settled" data-level="18" id="revision-history"><span class="secno">18. </span><span class="content">Revision History</span><a class="self-link" href="#revision-history"></a></h2>
    <p><em>This section is not normative.</em></p>
-   <p>This section contains the substantive changes that have been made to this specification over time.</p>
+   <p>This section summarizes the significant changes that have been made to this specification over time.</p>
    <h3 class="heading settled" data-level="18.1" id="changes-since-l2"><span class="secno">18.1. </span><span class="content">Changes since Web Authentication Level 2 [[webauthn-2-20210408]]</span><a class="self-link" href="#changes-since-l2"></a></h3>
    <h4 class="heading settled" data-level="18.1.1" id="changes-l3-substantive"><span class="secno">18.1.1. </span><span class="content">Substantive Changes</span><a class="self-link" href="#changes-l3-substantive"></a></h4>
    <p>The following changes were made to the <a data-link-type="dfn" href="#web-authentication-api" id="ref-for-web-authentication-api②⓪">Web Authentication API</a> and the way it operates.</p>
@@ -9780,6 +9780,8 @@ <h4 class="heading settled" data-level="18.1.1" id="changes-l3-substantive"><spa
 [[#dictionary-pkcredentialentity]]</p>
     <li data-md>
      <p>[[#sctn-android-safetynet-attestation]]</p>
+    <li data-md>
+     <p><a data-link-type="dfn" href="#dom-collectedclientdata-tokenbinding" id="ref-for-dom-collectedclientdata-tokenbinding②">tokenBinding</a> was changed to [RESERVED].</p>
    </ul>
    <p>New features:</p>
    <ul>
@@ -12285,7 +12287,7 @@ <h2 class="no-num no-ref heading settled" id="idl-index"><span class="content">I
 "dom-collectedclientdata-challenge": {"dfnID":"dom-collectedclientdata-challenge","dfnText":"challenge","external":false,"refSections":[{"refs":[{"id":"ref-for-dom-collectedclientdata-challenge"}],"title":"5.1.3. Create a New Credential - PublicKeyCredential\u2019s [[Create]](origin, options, sameOriginWithAncestors) Internal Method"},{"refs":[{"id":"ref-for-dom-collectedclientdata-challenge\u2460"}],"title":"5.1.4.1. PublicKeyCredential\u2019s [[DiscoverFromExternalSource]](origin, options, sameOriginWithAncestors) Internal Method"},{"refs":[{"id":"ref-for-dom-collectedclientdata-challenge\u2461"}],"title":"5.8.1. Client Data Used in WebAuthn Signatures (dictionary CollectedClientData)"},{"refs":[{"id":"ref-for-dom-collectedclientdata-challenge\u2462"},{"id":"ref-for-dom-collectedclientdata-challenge\u2463"}],"title":"5.8.1.1. Serialization"},{"refs":[{"id":"ref-for-dom-collectedclientdata-challenge\u2464"}],"title":"5.8.1.3. Future development"},{"refs":[{"id":"ref-for-dom-collectedclientdata-challenge\u2465"}],"title":"7.1. Registering a New Credential"},{"refs":[{"id":"ref-for-dom-collectedclientdata-challenge\u2466"}],"title":"7.2. Verifying an Authentication Assertion"},{"refs":[{"id":"ref-for-dom-collectedclientdata-challenge\u2467"}],"title":"13.4.3. Cryptographic Challenges"}],"url":"#dom-collectedclientdata-challenge"},
 "dom-collectedclientdata-crossorigin": {"dfnID":"dom-collectedclientdata-crossorigin","dfnText":"crossOrigin","external":false,"refSections":[{"refs":[{"id":"ref-for-dom-collectedclientdata-crossorigin"}],"title":"5.1.3. Create a New Credential - PublicKeyCredential\u2019s [[Create]](origin, options, sameOriginWithAncestors) Internal Method"},{"refs":[{"id":"ref-for-dom-collectedclientdata-crossorigin\u2460"}],"title":"5.1.4.1. PublicKeyCredential\u2019s [[DiscoverFromExternalSource]](origin, options, sameOriginWithAncestors) Internal Method"},{"refs":[{"id":"ref-for-dom-collectedclientdata-crossorigin\u2461"},{"id":"ref-for-dom-collectedclientdata-crossorigin\u2462"}],"title":"5.8.1. Client Data Used in WebAuthn Signatures (dictionary CollectedClientData)"},{"refs":[{"id":"ref-for-dom-collectedclientdata-crossorigin\u2463"},{"id":"ref-for-dom-collectedclientdata-crossorigin\u2464"}],"title":"5.8.1.1. Serialization"},{"refs":[{"id":"ref-for-dom-collectedclientdata-crossorigin\u2465"}],"title":"5.8.1.3. Future development"},{"refs":[{"id":"ref-for-dom-collectedclientdata-crossorigin\u2466"}],"title":"7.1. Registering a New Credential"},{"refs":[{"id":"ref-for-dom-collectedclientdata-crossorigin\u2467"}],"title":"7.2. Verifying an Authentication Assertion"}],"url":"#dom-collectedclientdata-crossorigin"},
 "dom-collectedclientdata-origin": {"dfnID":"dom-collectedclientdata-origin","dfnText":"origin","external":false,"refSections":[{"refs":[{"id":"ref-for-dom-collectedclientdata-origin"}],"title":"5.1.3. Create a New Credential - PublicKeyCredential\u2019s [[Create]](origin, options, sameOriginWithAncestors) Internal Method"},{"refs":[{"id":"ref-for-dom-collectedclientdata-origin\u2460"}],"title":"5.1.4.1. PublicKeyCredential\u2019s [[DiscoverFromExternalSource]](origin, options, sameOriginWithAncestors) Internal Method"},{"refs":[{"id":"ref-for-dom-collectedclientdata-origin\u2461"}],"title":"5.8.1. Client Data Used in WebAuthn Signatures (dictionary CollectedClientData)"},{"refs":[{"id":"ref-for-dom-collectedclientdata-origin\u2462"},{"id":"ref-for-dom-collectedclientdata-origin\u2463"}],"title":"5.8.1.1. Serialization"},{"refs":[{"id":"ref-for-dom-collectedclientdata-origin\u2464"}],"title":"5.8.1.2. Limited Verification Algorithm"},{"refs":[{"id":"ref-for-dom-collectedclientdata-origin\u2465"}],"title":"5.8.1.3. Future development"},{"refs":[{"id":"ref-for-dom-collectedclientdata-origin\u2466"}],"title":"7.1. Registering a New Credential"},{"refs":[{"id":"ref-for-dom-collectedclientdata-origin\u2467"}],"title":"7.2. Verifying an Authentication Assertion"},{"refs":[{"id":"ref-for-dom-collectedclientdata-origin\u2468"},{"id":"ref-for-dom-collectedclientdata-origin\u2460\u24ea"},{"id":"ref-for-dom-collectedclientdata-origin\u2460\u2460"}],"title":"13.4.8. Code injection attacks"},{"refs":[{"id":"ref-for-dom-collectedclientdata-origin\u2460\u2461"},{"id":"ref-for-dom-collectedclientdata-origin\u2460\u2462"},{"id":"ref-for-dom-collectedclientdata-origin\u2460\u2463"},{"id":"ref-for-dom-collectedclientdata-origin\u2460\u2464"},{"id":"ref-for-dom-collectedclientdata-origin\u2460\u2465"},{"id":"ref-for-dom-collectedclientdata-origin\u2460\u2466"},{"id":"ref-for-dom-collectedclientdata-origin\u2460\u2467"},{"id":"ref-for-dom-collectedclientdata-origin\u2460\u2468"},{"id":"ref-for-dom-collectedclientdata-origin\u2461\u24ea"},{"id":"ref-for-dom-collectedclientdata-origin\u2461\u2460"}],"title":"13.4.9. Validating the origin of a credential"},{"refs":[{"id":"ref-for-dom-collectedclientdata-origin\u2461\u2461"}],"title":"16. Test Vectors"}],"url":"#dom-collectedclientdata-origin"},
-"dom-collectedclientdata-tokenbinding": {"dfnID":"dom-collectedclientdata-tokenbinding","dfnText":"tokenBinding","external":false,"refSections":[{"refs":[{"id":"ref-for-dom-collectedclientdata-tokenbinding"},{"id":"ref-for-dom-collectedclientdata-tokenbinding\u2460"}],"title":"5.8.1. Client Data Used in WebAuthn Signatures (dictionary CollectedClientData)"}],"url":"#dom-collectedclientdata-tokenbinding"},
+"dom-collectedclientdata-tokenbinding": {"dfnID":"dom-collectedclientdata-tokenbinding","dfnText":"tokenBinding","external":false,"refSections":[{"refs":[{"id":"ref-for-dom-collectedclientdata-tokenbinding"},{"id":"ref-for-dom-collectedclientdata-tokenbinding\u2460"}],"title":"5.8.1. Client Data Used in WebAuthn Signatures (dictionary CollectedClientData)"},{"refs":[{"id":"ref-for-dom-collectedclientdata-tokenbinding\u2461"}],"title":"18.1.1. Substantive Changes"}],"url":"#dom-collectedclientdata-tokenbinding"},
 "dom-collectedclientdata-toporigin": {"dfnID":"dom-collectedclientdata-toporigin","dfnText":"topOrigin","external":false,"refSections":[{"refs":[{"id":"ref-for-dom-collectedclientdata-toporigin"}],"title":"5.1.3. Create a New Credential - PublicKeyCredential\u2019s [[Create]](origin, options, sameOriginWithAncestors) Internal Method"},{"refs":[{"id":"ref-for-dom-collectedclientdata-toporigin\u2460"}],"title":"5.1.4.1. PublicKeyCredential\u2019s [[DiscoverFromExternalSource]](origin, options, sameOriginWithAncestors) Internal Method"},{"refs":[{"id":"ref-for-dom-collectedclientdata-toporigin\u2461"}],"title":"5.8.1. Client Data Used in WebAuthn Signatures (dictionary CollectedClientData)"},{"refs":[{"id":"ref-for-dom-collectedclientdata-toporigin\u2462"},{"id":"ref-for-dom-collectedclientdata-toporigin\u2463"},{"id":"ref-for-dom-collectedclientdata-toporigin\u2464"}],"title":"5.8.1.1. Serialization"},{"refs":[{"id":"ref-for-dom-collectedclientdata-toporigin\u2465"},{"id":"ref-for-dom-collectedclientdata-toporigin\u2466"}],"title":"5.8.1.2. Limited Verification Algorithm"},{"refs":[{"id":"ref-for-dom-collectedclientdata-toporigin\u2467"}],"title":"5.8.1.3. Future development"},{"refs":[{"id":"ref-for-dom-collectedclientdata-toporigin\u2468"},{"id":"ref-for-dom-collectedclientdata-toporigin\u2460\u24ea"}],"title":"7.1. Registering a New Credential"},{"refs":[{"id":"ref-for-dom-collectedclientdata-toporigin\u2460\u2460"},{"id":"ref-for-dom-collectedclientdata-toporigin\u2460\u2461"}],"title":"7.2. Verifying an Authentication Assertion"},{"refs":[{"id":"ref-for-dom-collectedclientdata-toporigin\u2460\u2462"},{"id":"ref-for-dom-collectedclientdata-toporigin\u2460\u2463"},{"id":"ref-for-dom-collectedclientdata-toporigin\u2460\u2464"},{"id":"ref-for-dom-collectedclientdata-toporigin\u2460\u2465"},{"id":"ref-for-dom-collectedclientdata-toporigin\u2460\u2466"},{"id":"ref-for-dom-collectedclientdata-toporigin\u2460\u2467"}],"title":"13.4.9. Validating the origin of a credential"},{"refs":[{"id":"ref-for-dom-collectedclientdata-toporigin\u2460\u2468"}],"title":"16. Test Vectors"},{"refs":[{"id":"ref-for-dom-collectedclientdata-toporigin\u2461\u24ea"}],"title":"18.1.1. Substantive Changes"}],"url":"#dom-collectedclientdata-toporigin"},
 "dom-collectedclientdata-type": {"dfnID":"dom-collectedclientdata-type","dfnText":"type","external":false,"refSections":[{"refs":[{"id":"ref-for-dom-collectedclientdata-type"}],"title":"5.1.3. Create a New Credential - PublicKeyCredential\u2019s [[Create]](origin, options, sameOriginWithAncestors) Internal Method"},{"refs":[{"id":"ref-for-dom-collectedclientdata-type\u2460"}],"title":"5.1.4.1. PublicKeyCredential\u2019s [[DiscoverFromExternalSource]](origin, options, sameOriginWithAncestors) Internal Method"},{"refs":[{"id":"ref-for-dom-collectedclientdata-type\u2461"}],"title":"5.8.1. Client Data Used in WebAuthn Signatures (dictionary CollectedClientData)"},{"refs":[{"id":"ref-for-dom-collectedclientdata-type\u2462"},{"id":"ref-for-dom-collectedclientdata-type\u2463"}],"title":"5.8.1.1. Serialization"},{"refs":[{"id":"ref-for-dom-collectedclientdata-type\u2464"}],"title":"5.8.1.2. Limited Verification Algorithm"},{"refs":[{"id":"ref-for-dom-collectedclientdata-type\u2465"}],"title":"5.8.1.3. Future development"},{"refs":[{"id":"ref-for-dom-collectedclientdata-type\u2466"}],"title":"7.1. Registering a New Credential"},{"refs":[{"id":"ref-for-dom-collectedclientdata-type\u2467"}],"title":"7.2. Verifying an Authentication Assertion"}],"url":"#dom-collectedclientdata-type"},
 "dom-credentialcreationoptions-publickey": {"dfnID":"dom-credentialcreationoptions-publickey","dfnText":"publicKey","external":false,"refSections":[{"refs":[{"id":"ref-for-dom-credentialcreationoptions-publickey"}],"title":"4. Terminology"},{"refs":[{"id":"ref-for-dom-credentialcreationoptions-publickey\u2460"},{"id":"ref-for-dom-credentialcreationoptions-publickey\u2461"},{"id":"ref-for-dom-credentialcreationoptions-publickey\u2462"}],"title":"5.1.3. Create a New Credential - PublicKeyCredential\u2019s [[Create]](origin, options, sameOriginWithAncestors) Internal Method"},{"refs":[{"id":"ref-for-dom-credentialcreationoptions-publickey\u2463"}],"title":"7.1. Registering a New Credential"},{"refs":[{"id":"ref-for-dom-credentialcreationoptions-publickey\u2464"}],"title":"18.1.1. Substantive Changes"}],"url":"#dom-credentialcreationoptions-publickey"},