Reference §14.4 in §14.2

w3c · May 9, 2018 · 6a83ec0 · 6a83ec0
1 parent 10e12d0
commit 6a83ec0
Showing 1 changed file with 4 additions and 0 deletions.
diff --git a/index.bs b/index.bs
@@ -4839,6 +4839,10 @@ shared between [=[RPS]=].
     not correlatable as having the same [=managing authenticator=]. A pair of malicious [=[RPS]=] thus cannot correlate users
     between their systems without additional information, e.g., a willfully reused username or e-mail address.
 
+- [=Authenticators=] ensure that their [=attestation certificates=] are not unique enough to identify a single [=authenticator=]
+    or a small group of [=authenticators=]. This is detailed further in [[#sec-attestation-privacy]]. A pair of malicious
+    [=[RPS]=] thus cannot correlate users between their systems by tracking individual [=authenticators=].
+
 Additionally, a [=public key credential=] with a [=client-side-resident credential private key=] can optionally include a [=user
 handle=] specified by the [=[RP]=]. The [=public key credential|credential=] can then be used to both identify and
 [=authentication|authenticate=] the user. This means that a privacy-conscious [=[RP]=] can allow the user to create an account