Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Preventing registration on multiple devices #2241

Closed
mar1n3r0 opened this issue Jan 21, 2025 · 1 comment
Closed

Preventing registration on multiple devices #2241

mar1n3r0 opened this issue Jan 21, 2025 · 1 comment
Labels
stat:Discuss

Comments

@mar1n3r0
Copy link

mar1n3r0 commented Jan 21, 2025
edited
Loading

Description

I have read the considerations about avoiding turning webauthn into a super cookie but the whole point of biometrics is to be able to identify a user on many devices. So imagine the following use case. You are developing a wallet for universal basic income. To avoid malicious behavior you want to make sure a user can register only once and can't get new wallets from new devices. Is there a way to achieve that while maintaining the security per device? Is it possible to avoid tracking while covering this use case?
@timcappalli
Copy link
Member

@mar1n3r0 this repo is for WebAuthn spec development. Please ask implementation and developer questions at either passkeys.dev/discuss or FIDO-DEV.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
stat:Discuss
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@timcappalli @mar1n3r0