Skip to content

Commit

Permalink
clarify FIDO client data text
Browse files Browse the repository at this point in the history
  • Loading branch information
@Janfred
Janfred committed Jul 8, 2024
1 parent 8669c65 commit 62b64ed
Showing 1 changed file with 2 additions and 1 deletion.
3 changes: 2 additions & 1 deletion draft-janfred-eap-fido.md
View file
Original file line number Diff line number Diff line change
Expand Up @@ -517,6 +517,7 @@ The second item is derived from the TLS keying material:
FIDO_CHALLENGE_TLS = TLS-Exporter("fido challenge", NULL, 32)

The third item is the optional additional client data sent by the server.
If the server did not send additional client data, this is omitted.

All three items are concatenated and hashed using SHA-256.[^cryptoagility]{:jf}
The result is the clientDataHash for the FIDO authentication.
Expand Down Expand Up @@ -906,7 +907,7 @@ draft-janfred-eap-fido-02:
draft-ietf-emu-eap-fido-00:

> * First WG draft
> * Update way FIDO client data is concatenated (include protocol binding at the very beginning)
> * Update way FIDO client data is constructed (include protocol binding at the very beginning, before exported key material from TLS)
> * Change auth requirements attribute to array of ints or text string, with text strings used for experimental features
> * Update IANA section for registry of auth requirement ints

Expand Down

0 comments on commit 62b64ed

Please sign in to comment.