|
|
|
|
|
|
by jeroenhd
171 days ago
|
|
|
> There was no such promise. The people who wish Passkeys to replace passwords did not demand it yet even. The specification states otherwise: https://www.w3.org/TR/webauthn-2/ A credential private key is the private key portion of a credential key pair. The credential private key is bound to a particular authenticator - its managing authenticator - and is expected to never be exposed to any other party, not even to the owner of the authenticator.
|
|
|