BEGIN:VCALENDAR
VERSION:2.0
PRODID:-//Sabre//Sabre VObject 4.5.8//EN
CALSCALE:GREGORIAN
LAST-MODIFIED:20240925T000748Z
BEGIN:VTIMEZONE
TZID:America/Los_Angeles
X-MICROSOFT-CDO-TZID:13
BEGIN:STANDARD
DTSTART:20231105T090000
TZOFFSETFROM:-0700
TZOFFSETTO:-0800
TZNAME:PST
END:STANDARD
BEGIN:STANDARD
DTSTART:20241103T090000
TZOFFSETFROM:-0700
TZOFFSETTO:-0800
TZNAME:PST
END:STANDARD
BEGIN:DAYLIGHT
DTSTART:20240310T100000
TZOFFSETFROM:-0800
TZOFFSETTO:-0700
TZNAME:PDT
END:DAYLIGHT
END:VTIMEZONE
BEGIN:VEVENT
UID:6469898c-678d-46e7-8d8e-4c9c8b1bb7cf
DTSTAMP:20240925T000748Z
SUMMARY:Web Authentication Working Group
DTSTART;TZID=America/Los_Angeles:20240924T090000
DTEND;TZID=America/Los_Angeles:20240924T160000
DESCRIPTION:https://www.w3.org/events/meetings/6469898c-678d-46e7-8d8e-4c9c
 8b1bb7cf/\n\n\n\nAgenda: https://docs.google.com/document/d/1QrFg2JP-V7Ey9
 YDS2zXzUBZBg8ovhL2Ja4CD433PwFE/edit\n\nAgenda\n\n**Power back earlier\, br
 idge is open**\n\n\n### L3 Target Publication Schedule discussion\n\n1. De
 adline for [wide review](https://www.w3.org/Consortium/Process/#wide-revie
 w) Sunday\, October 27 0024  \n2. [Group Call for Consensus (CfC)](https:/
 /w3c.github.io/charter-drafts/charter-template.html#decisions) to move to 
 Candidate Recommendation\, [wide review](https://www.w3.org/Consortium/Pro
 cess/#wide-review) is done  Monday\, October 28 0024  \n3. Transition requ
 est to [Candidate Recommendation](https://www.w3.org/Guide/transitions?pro
 file=CR&cr=new) Thursday\, November 7 0024\n\n### L3 WD02 open pull reques
 ts and open issues\n\n[Issues · w3c/webauthn (github.com)](https://github
 .com/w3c/webauthn/issues?q=is%3Aopen+label%3Atype%3Atechnical+milestone%3A
 L3-WD-02)  (30 open technical issues on L3 to resolve or move to futures)\
 n\n[Pull requests · w3c/webauthn (github.com)](https://github.com/w3c/web
 authn/pulls?q=is%3Aopen+is%3Apr+label%3Atype%3Atechnical+milestone%3AL3-WD
 -02) (3 technical pull requests on L3 to resolve or move to futures)  \n \
 n\n#### [Pull requests · w3c/webauthn (github.com)](https://github.com/w3
 c/webauthn/pulls?q=is%3Aopen+is%3Apr+milestone%3AL3-WD-02)\n\n1. [Add user
 Name and userDisplayName to webdriver by nsatragno · Pull Request \\#2148
  · w3c/webauthn (github.com)](https://github.com/w3c/webauthn/pull/2148) 
  \n2. [Clarify behaviour of duplicate hints by emlun · Pull Request \\#21
 45 · w3c/webauthn (github.com)](https://github.com/w3c/webauthn/pull/2145
 )  \n3. [Update Use Cases for L3 by timcappalli · Pull Request \\#2139 ·
  w3c/webauthn (github.com)](https://github.com/w3c/webauthn/pull/2139)  \n
 4. [Update obsolete privacy concerns about throwing errors early by emlun 
 · Pull Request \\#2134 · w3c/webauthn (github.com)](https://github.com/w
 3c/webauthn/pull/2134)  \n5. [Clarify meaning of "unless" in UP flag valid
 ation by emlun · Pull Request \\#2126 · w3c/webauthn (github.com)](https
 ://github.com/w3c/webauthn/pull/2126)  \n6. [Cleanup: Manual References by
  timcappalli · Pull Request \\#2111 · w3c/webauthn (github.com)](https:/
 /github.com/w3c/webauthn/pull/2111)  \n7. [https://github.com/w3c/webauthn
 /pulls?q=is%3Aopen+is%3Apr+milestone%3AL3-WD-02](https://github.com/w3c/we
 bauthn/pulls?q=is%3Aopen+is%3Apr+milestone%3AL3-WD-02)  \n8. [Clarify TPM 
 attestation verification instructions by sbweeden · Pull Request \\#1926 
 · w3c/webauthn (github.com](https://github.com/w3c/webauthn/pull/1926)\n\
 n\n#### [Pull requests · w3c/webauthn (github.com)](https://github.com/w3
 c/webauthn/pulls?q=is%3Aopen+is%3Apr+no%3Amilestone)\n\n1. [Exclude all pl
 atform authenticators that use self attesation from hav… by zacknewman 
 · Pull Request \\#2150 · w3c/webauthn (github.com)](https://github.com/w
 3c/webauthn/pull/2150)  \n2. [Remove bikeshed workaround by dwaite · Pull
  Request \\#2149 · w3c/webauthn (github.com)](https://github.com/w3c/weba
 uthn/pull/2149)\n\n#### [Issues · w3c/webauthn (github.com)](https://gith
 ub.com/w3c/webauthn/issues?q=is%3Aopen+is%3Aissue+milestone%3AL3-WD-02+)\n
 \n1. [Add \\`userName\\` and \\`userDisplayName\\` to WebDriver's \\`Crede
 ntial Parameters\\` JSON object · Issue \\#2143 · w3c/webauthn (github.c
 om)](https://github.com/w3c/webauthn/issues/2143)  \n2. [Clarify behaviour
  of duplicate hints · Issue \\#2135 · w3c/webauthn (github.com)](https:/
 /github.com/w3c/webauthn/issues/2135)  \n3. [Review privacy concerns aroun
 d error conditions · Issue \\#2132 · w3c/webauthn (github.com)](https://
 github.com/w3c/webauthn/issues/2132)  \n4. [Remove rp.name · Issue \\#212
 1 · w3c/webauthn (github.com)](https://github.com/w3c/webauthn/issues/212
 1)  \n5. [CollectedClientData.crossOrigin not referenced in RP ops · Issu
 e \\#2113 · w3c/webauthn (github.com)](https://github.com/w3c/webauthn/is
 sues/2113)  \n6. [UTF-8 decode should not be required for response.clientD
 ataJSON and cData · Issue \\#2100 · w3c/webauthn (github.com)](https://g
 ithub.com/w3c/webauthn/issues/2100)  \n7. [\\[\\[Create\\]\\] should not a
 ccess the global object directly · Issue \\#2092 · w3c/webauthn (github.
 com)](https://github.com/w3c/webauthn/issues/2092)  \n8. [create() and get
 () return an algorithm\, not a credential · Issue \\#1984 · w3c/webauthn
  (github.com)](https://github.com/w3c/webauthn/issues/1984)  \n9. [Ambiguo
 us instructions in the Android Key Attestation Statement Format verificati
 on procedure · Issue \\#1980 · w3c/webauthn (github.com)](https://github
 .com/w3c/webauthn/issues/1980)  \n10. [Are notes in webauthn normative or 
 informative? · Issue \\#1979 · w3c/webauthn (github.com)](https://github
 .com/w3c/webauthn/issues/1979)  \n11. [Extensions should specify partial d
 ictionaries that modify AuthenticationExtensionsClient{Inputs\, Outputs}JS
 ON · Issue \\#1968 · w3c/webauthn (github.com)](https://github.com/w3c/w
 ebauthn/issues/1968)  \n12. [\\[Superset\\] Updating credential metadata a
 nd requesting deletion of stale credentials · Issue \\#1967 · w3c/webaut
 hn (github.com)](https://github.com/w3c/webauthn/issues/1967)  \n13. [Shou
 ld credentials requested with attestation=none include an AAGUID? · Issue
  \\#1962 · w3c/webauthn (github.com)](https://github.com/w3c/webauthn/iss
 ues/1962)  \n14. [Non-modal registration during conditional assertion · I
 ssue \\#1929 · w3c/webauthn (github.com)](https://github.com/w3c/webauthn
 /issues/1929)  \n15. [Adding some sentences to describe credential sharing
  between multiple users · Issue \\#1921 · w3c/webauthn (github.com)](htt
 ps://github.com/w3c/webauthn/issues/1921)  \n16. [Allow desired attestatio
 n format to be an ordered list · Issue \\#1917 · w3c/webauthn (github.co
 m)](https://github.com/w3c/webauthn/issues/1917)  \n17. [Describe packed e
 nterprise attestation · Issue \\#1916 · w3c/webauthn (github.com)](https
 ://github.com/w3c/webauthn/issues/1916)  \n18. [Misaligned steps in Sectio
 n 7.2 · Issue \\#1913 · w3c/webauthn (github.com)](https://github.com/w3
 c/webauthn/issues/1913)  \n19. [Prescriptive behaviours for Autofill UI ·
  Issue \\#1800 · w3c/webauthn (github.com)](https://github.com/w3c/webaut
 hn/issues/1800)  \n20. [Should enterprise attestation support be flagged e
 xplicitly? · Issue \\#1742 · w3c/webauthn · GitHub](https://github.com/
 w3c/webauthn/issues/1742)  \n21. [Discussing mechanisms for enterprise RP'
 s to enforce bound properties of credentials · Issue \\#1739 · w3c/webau
 thn · GitHub](https://github.com/w3c/webauthn/issues/1739)  \n22. [Provid
 e passwordless example\, or update 1.3.2. to be a passwordless example · 
 Issue \\#1735 · w3c/webauthn · GitHub](https://github.com/w3c/webauthn/i
 ssues/1735)  \n23. [Update top level use cases to account for multi-device
  credentials · Issue \\#1720 · w3c/webauthn · GitHub](https://github.co
 m/w3c/webauthn/issues/1720)  \n24. [Public Key Credential Source and Exten
 sions · Issue \\#1719 · w3c/webauthn · GitHub](https://github.com/w3c/w
 ebauthn/issues/1719)  \n25. [RP operations: some extension processing may 
 assume that the encompassing signature is valid · Issue \\#1711 · w3c/we
 bauthn · GitHub](https://github.com/w3c/webauthn/issues/1711)  \n26. [Spl
 it RP ops "Registering a new credential" into one with and one without att
 estation · Issue \\#1710 · w3c/webauthn (github.com)](https://github.com
 /w3c/webauthn/issues/1710)  \n27. [Switch to permissive copyright license?
  · Issue \\#1705 · w3c/webauthn (github.com)](https://github.com/w3c/web
 authn/issues/1705)  \n28. [Should an RP be able to provide finer grained a
 uthenticator filtering in attestation options? · Issue \\#1688 · w3c/web
 authn (github.com)](https://github.com/w3c/webauthn/issues/1688)  \n29. [L
 ookup Credential Source by Credential ID Algorithm returns sensitive data 
 such as the credential private key · Issue \\#1678 · w3c/webauthn · Git
 Hub](https://github.com/w3c/webauthn/issues/1678)  \n30. [Synced Credentia
 ls · Issue \\#1665 · w3c/webauthn · GitHub](https://github.com/w3c/weba
 uthn/issues/1665)  \n31. [Cross-origin credential creation in iframes · I
 ssue \\#1656 · w3c/webauthn (github.com)](https://github.com/w3c/webauthn
 /issues/1656)  \n32. [Trailing position of metadata · Issue \\#1646 · w3
 c/webauthn (github.com)](https://github.com/w3c/webauthn/issues/1646)  \n3
 3. [\\[Editorial\\] Truncation description inaccurate · Issue \\#1645 · 
 w3c/webauthn (github.com)](https://github.com/w3c/webauthn/issues/1645)  \
 n34. [Mechanism for encoding \\*direction\\* metadata may need more work 
 · Issue \\#1644 · w3c/webauthn (github.com)](https://github.com/w3c/weba
 uthn/issues/1644)  \n35. [Use of in-field metadata not preferred · Issue 
 \\#1643 · w3c/webauthn (github.com)](https://github.com/w3c/webauthn/issu
 es/1643)  \n36. [Unicode "tag" characters are deprecated for language tagg
 ing · Issue \\#1642 · w3c/webauthn (github.com)](https://github.com/w3c/
 webauthn/issues/1642)  \n37. [U+ notation incorrect · Issue \\#1641 · w3
 c/webauthn (github.com)](https://github.com/w3c/webauthn/issues/1641)  \n3
 8. [Syncing Platform Keys\, Recoverability and Security levels · Issue \\
 #1640 · w3c/webauthn (github.com)](https://github.com/w3c/webauthn/issues
 /1640)  \n39. [Possible experiences in a future WebAuthn · Issue \\#1637 
 · w3c/webauthn (github.com)](https://github.com/w3c/webauthn/issues/1637)
   \n40. [Missing Test Vectors · Issue \\#1633 · w3c/webauthn (github.com
 )](https://github.com/w3c/webauthn/issues/1633)  \n41. [CollectedClientDat
 a.crossOrigin default value and whether it is required · Issue \\#1631 ·
  w3c/webauthn (github.com)](https://github.com/w3c/webauthn/issues/1631)  
 \n42. [Support for remote desktops · Issue \\#1577 · w3c/webauthn (githu
 b.com)](https://github.com/w3c/webauthn/issues/1577)  \n43. [Prevent brows
 ers from deleting credentials that the RP wanted to be server-side · Issu
 e \\#1569 · w3c/webauthn (github.com)](https://github.com/w3c/webauthn/is
 sues/1569)  \n44. [Support a "create or get \\[or replace\\]" credential r
 e-association operation · Issue \\#1568 · w3c/webauthn (github.com)](htt
 ps://github.com/w3c/webauthn/issues/1568)  \n45. [Adding info about HSTS f
 or the RPID to client Data. · Issue \\#1554 · w3c/webauthn (github.com)]
 (https://github.com/w3c/webauthn/issues/1554)  \n46. [Making PublicKeyCred
 entialDescriptor.transports mandatory · Issue \\#1522 · w3c/webauthn (gi
 thub.com)](https://github.com/w3c/webauthn/issues/1522)  \n47. [cleanup \\
 <pre class=anchors\\> and use \\<pre class="link-defaults"\\> as appropria
 te · Issue \\#1489 · w3c/webauthn (github.com)](https://github.com/w3c/w
 ebauthn/issues/1489)  \n48. [Regarding the issue of Credential ID exposure
 (13.5.6)\, from what perspective should RP compare RK and NRK and which sh
 ould be adopted? · Issue \\#1484 · w3c/webauthn (github.com)](https://gi
 thub.com/w3c/webauthn/issues/1484)  \n49. [Requesting properties of create
 d credentials. · Issue \\#1449 · w3c/webauthn (github.com)](https://gith
 ub.com/w3c/webauthn/issues/1449)  \n50. [PublicKeyCredentialParameters can
 't select curve (E.g. ed448) · Issue \\#1446 · w3c/webauthn (github.com)
 ](https://github.com/w3c/webauthn/issues/1446)  \n51. [Minor cleanups from
  PR 1270 review · Issue \\#1291 · w3c/webauthn (github.com)](https://git
 hub.com/w3c/webauthn/issues/1291)  \n52. [Clearly define the way how RP ha
 ndles the extensions · Issue \\#1258 · w3c/webauthn (github.com)](https:
 //github.com/w3c/webauthn/issues/1258)  \n53. [export definitions? · Issu
 e \\#1049 · w3c/webauthn (github.com)](https://github.com/w3c/webauthn/is
 sues/1049)  \n54. [undefined terms and terms we really ought to define · 
 Issue \\#462 · w3c/webauthn (github.com)](https://github.com/w3c/webauthn
 /issues/462)\n\n\n#### [Issues · w3c/webauthn · GitHub](https://github.c
 om/w3c/webauthn/issues?q=is%3Aopen+is%3Aissue+-label%3Astat%3AOnGoing+-lab
 el%3Astat%3Apr-open+no%3Amilestone)\n\n1. [Allow \\`platform\\`-based self
  attestation with non-zero AAGUID when \\`AttestationConveyancePreferenceO
 ption\\` \\`"none"\\` is used · Issue \\#2146 · w3c/webauthn (github.com
 )](https://github.com/w3c/webauthn/issues/2146)  \n2. [Cross-window \\`Vir
 tual Authenticator Database\\` · Issue \\#2117 · w3c/webauthn (github.co
 m)](https://github.com/w3c/webauthn/issues/2117)  \n3. [Make \\`Authentica
 torAttestationResponseJSON.publicKeyAlgorithm\\` optional · Issue \\#2106
  · w3c/webauthn (github.com)](https://github.com/w3c/webauthn/issues/2106
 )  \n4. [Additional guidance/clarification on RP ID and origin validation 
 · Issue \\#2059 · w3c/webauthn (github.com)](https://github.com/w3c/weba
 uthn/issues/2059)  \n5. [excludeCredentials on Get · Issue \\#2057 · w3c
 /webauthn · GitHub](https://github.com/w3c/webauthn/issues/2057)  \n6. [C
 ollectedClientData serialization is confusing WebIDL and/or Infra values f
 or ECMAScript values · Issue \\#2056 · w3c/webauthn (github.com)](https:
 //github.com/w3c/webauthn/issues/2056)  \n7. [Deprecate AuthenticatorAttac
 hment in favor of PublicKeyCredentialHints. · Issue \\#2053 · w3c/webaut
 hn (github.com)](https://github.com/w3c/webauthn/issues/2053)  \n8. [New A
 uthenticator Extension: Time Since UV · Issue \\#2034 · w3c/webauthn (gi
 thub.com)](https://github.com/w3c/webauthn/issues/2034)  \n9. [Reflect cac
 hing of user gestures in WebAuthn assertion · Issue \\#2023 · w3c/webaut
 hn (github.com)](https://github.com/w3c/webauthn/issues/2023)  \n10. [Revi
 sed txAuthSimple extension · Issue \\#2022 · w3c/webauthn (github.com)](
 https://github.com/w3c/webauthn/issues/2022)  \n11. [Clarify the need for 
 truly randomly generated challenges (aka challenge callback issue) · Issu
 e \\#1856 · w3c/webauthn (github.com)](https://github.com/w3c/webauthn/is
 sues/1856)  \n12. [Cross origin authentication without iframes (accommodat
 ing SPC in WebAuthn) · Issue \\#1667 · w3c/webauthn · GitHub](https://g
 ithub.com/w3c/webauthn/issues/1667)\n\n###  Other open issues or discussio
 ns \n\n###  Adjourn
STATUS:CONFIRMED
CREATED:20240614T163320Z
LAST-MODIFIED:20240925T000748Z
SEQUENCE:9
ORGANIZER;CN=W3C Calendar;PARTSTAT=ACCEPTED;ROLE=NON-PARTICIPANT:mailto:nor
 eply@w3.org
ATTENDEE;CUTYPE=GROUP;ROLE=OPT-PARTICIPANT;RSVP=FALSE;CN=Web Authentication
  Working Group:mailto:public-webauthn@w3.org
LOCATION:4 Concourse Level - Oceanside
CATEGORIES:TPAC 2024,Group Meetings
END:VEVENT
END:VCALENDAR