LargeBlob implementation

26 views

Skip to first unread message

Praveen PPT

unread,

Jun 25, 2024, 10:54:07 AM (4 days ago) Jun 25

to FIDO Dev (fido-dev)

Assuming LargeBlob is authenticator specific data with each credential specific data as array item, can RP/Platform update value of any other RP/Platform? How do we prevent data corruption as anybody can update the LargeBlob array

The ‘maxSerializedLargeBlobArray’ returned in AuthenticatorGetInfo is it max size of complete large blob array or per credential large blob array?

Adam Langley

unread,

Jun 25, 2024, 2:52:20 PM (4 days ago) Jun 25

to FIDO Dev (fido-dev), Praveen PPT

On Tuesday, June 25, 2024 at 7:54:07 AM UTC-7 Praveen PPT wrote:

Assuming LargeBlob is authenticator specific data with each credential specific data as array item, can RP/Platform update value of any other RP/Platform? How do we prevent data corruption as anybody can update the LargeBlob array

Yes, any platform can update it and, if it wants, write invalid data. That's the way that the extension works.

The ‘maxSerializedLargeBlobArray’ returned in AuthenticatorGetInfo is it max size of complete large blob array or per credential large blob array?

It is the size of the serialized largeBlob array, i.e. the full blob containing all the CBOR and including the trailing 16 bytes of SHA-256.

Cheers

AGL

Reply all

Reply to author

Forward

0 new messages