[saag] W3C WebCrypto API (Javascript) First Public Working Draft: Request for Review
Harry Halpin <hhalpin@w3.org> Mon, 17 September 2012 15:15 UTC
Return-Path: <hhalpin@w3.org>
X-Original-To: saag@ietfa.amsl.com
Delivered-To: saag@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id A5C6421F870B for <saag@ietfa.amsl.com>; Mon, 17 Sep 2012 08:15:23 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -10.599
X-Spam-Level:
X-Spam-Status: No, score=-10.599 tagged_above=-999 required=5 tests=[BAYES_00=-2.599, RCVD_IN_DNSWL_HI=-8]
Received: from mail.ietf.org ([64.170.98.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id s35FEzyaHCkE for <saag@ietfa.amsl.com>; Mon, 17 Sep 2012 08:15:23 -0700 (PDT)
Received: from jay.w3.org (ssh.w3.org [128.30.52.60]) by ietfa.amsl.com (Postfix) with ESMTP id 27F8E21F870A for <saag@ietf.org>; Mon, 17 Sep 2012 08:15:23 -0700 (PDT)
Received: from [199.254.238.254] (helo=[172.27.0.78]) by jay.w3.org with esmtpsa (TLS1.0:DHE_RSA_AES_256_CBC_SHA1:32) (Exim 4.69) (envelope-from <hhalpin@w3.org>) id 1TDd2g-0002pI-06 for saag@ietf.org; Mon, 17 Sep 2012 11:15:22 -0400
Message-ID: <50573E85.9000106@w3.org>
Date: Mon, 17 Sep 2012 17:15:17 +0200
From: Harry Halpin <hhalpin@w3.org>
User-Agent: Mozilla/5.0 (X11; Linux i686; rv:15.0) Gecko/20120827 Thunderbird/15.0
MIME-Version: 1.0
To: saag@ietf.org
Content-Type: text/plain; charset="ISO-8859-1"; format="flowed"
Content-Transfer-Encoding: 7bit
Subject: [saag] W3C WebCrypto API (Javascript) First Public Working Draft: Request for Review
X-BeenThere: saag@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Security Area Advisory Group <saag.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/saag>, <mailto:saag-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/saag>
List-Post: <mailto:saag@ietf.org>
List-Help: <mailto:saag-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/saag>, <mailto:saag-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 17 Sep 2012 15:15:23 -0000
SAAG and larger IETF community, The W3C has recently released the First Public Working Draft of the W3C Web Crypto API [1], a Javascript API created in a W3C Working Group with representatives of all major browsers that will expose cryptographic primitives to WebApps. As you can tell, its currently only supporting core functionality, but will likely be expanded over the course of next year. The rest of the features are going to be use-case driven and "secondary", see charter for details on possible future features for the API [2]. At this stage, we are at this stage leaving many of the issues open (14 in total, clearly listed in the spec!) but we will need to close them all as soon as possible. We'd love any comments you have, please post to public-webcrypto-comments@w3.org. Any further questions I'd be happy to answer. Here I go, reigniting the Javascript authentication debate on this list :) cheers, harry [1] http://www.w3.org/TR/WebCryptoAPI/ [2] http://www.w3.org/2011/11/webcryptography-charter.html#scope
- [saag] W3C WebCrypto API (Javascript) First Publiā¦ Harry Halpin