Mitigate Threats for Digital Credentials API: Episode II - Attack of...
- Past
- Confirmed
- Breakout Sessions
- Past
- Confirmed
- Breakout Sessions
Meeting
In the first episode we focused on high-level threats related to the Formal Objection received for the addition of the Digital Credentials API.
Considering that the W3C Council has overruled the Formal Objection, the Digital Credentials API is by design strongly linked to its Threat Model.
In this episode, we will therefore focus on a specific model about the step of Presenting Credentials on the Web, asking ourselves: What are we working on? What can go wrong? What are we going to do about it? Did we do a good job?
This breakout is intended to be a collaborative, working session. The focus will be on gaining consensus on threats and mitigations.
Agenda
Chairs:
Simone Onofri
Description:
In the first episode we focused on high-level threats related to the Formal Objection received for the addition of the Digital Credentials API.
Considering that the W3C Council has overruled the Formal Objection, the Digital Credentials API is by design strongly linked to its Threat Model.
In this episode, we will therefore focus on a specific model about the step of Presenting Credentials on the Web, asking ourselves: What are we working on? What can go wrong? What are we going to do about it? Did we do a good job?
This breakout is intended to be a collaborative, working session. The focus will be on gaining consensus on threats and mitigations.
Goal(s):
The focus will be on gaining consensus on the mitigations.
Materials:
Minutes
Read minutesExport options
Personal Links
Please log in to export this event with all the information you have access to.
Public Links
The following links do not contain any sensitive information and can be shared publicly.