pre-configured RP ID list

44 views
Skip to first unread message

Praveen PPT

unread,
Jul 9, 2024, 9:46:34 AMJul 9
to FIDO Dev (fido-dev)
Currently referring to: https://fidoalliance.org/specs/fido-v2.1-ps-20210615/fido-client-to-authenticator-protocol-v2.1-ps-errata-20220621.html 

We see that we have 'pre-configured RP ID list' for the list of RP IDs to which enterprise attestation can be returned and we also have 'pre-configured list of RP IDs authorized to receive' for the list of RP IDs that are authorized to receive the current minimum PIN Length.

Are these two lists identical or do we need to treat them as two different lists having different RP IDs?

Adam Langley

unread,
Jul 10, 2024, 3:48:21 PMJul 10
to FIDO Dev (fido-dev), Praveen PPT
They are not inherently identical. The minimum PIN length list can be configured via the config command, while the enterprise attestation list is supposed to be preconfigured by the vendor.


Cheers

AGL
 
Reply all
Reply to author
Forward
0 new messages