I was curious what would be needed to apply Web Authentication for message/document signatures that third parties can verify. This is an article/demo I wrote about what my findings. Note that the standard was deliberately not designed for this and I can’t recommend applying this hack for real.