W3C home > Mailing lists > Public > public-identity@w3.org > November 2011

Re: Web Crypto WG and XKMS

From: Anders Rundgren <anders.rundgren@telia.com>
Date: Wed, 02 Nov 2011 18:44:29 +0100
Message-ID: <4EB1817D.6090608@telia.com>
To: Dan Brickley <danbri@danbri.org>
CC: public-identity@w3.org, Harry Halpin <hhalpin@w3.org>, Rigo Wenning <rigo@w3.org>
On 2011-11-02 09:17, Dan Brickley wrote:
> Hi
> Looking at http://www.w3.org/wiki/IdentityCharter#Web_Cryptography_Working_Group_Charter
> "The goal of this Working Group provide standards around key storage
> and cryptographic primitives that will provide capabilities that are
> currently difficult to do safely on the Web platform. "
> 
> (+1 on the new name btw)
> 
> How does this relate to the earlier XKMS work?
> http://www.w3.org/standards/techs/xkms#w3c_all
> 
> e.g. http://www.w3.org/TR/2005/REC-xkms2-20050628/
> Abstract: "This document specifies protocols for distributing and
> registering public keys, suitable for use in conjunction with the W3C
> Recommendations for XML Signature [XML-SIG] and XML Encryption
> [XML-Enc]. The XML Key Management Specification (XKMS) comprises two
> parts — the XML Key Information Service Specification (X-KISS) and the
> XML Key Registration Service Specification (X-KRSS)."
> 
> It seems the latter emphasises protocols (and hence leans more towards
> SOAP/WSDL than APIs), while the former emphasises in-browser APIs, but
> they share a concern for key storage and management?
> 
> Are there any pieces of work that can be shared across these use cases?

http://webpki.org/papers/keygen2/sks-keygen2-exec-level-presentation.pdf

It does Key provisioning and management.

In spite of being built on XML and XML-SIG it is entirely different
to XKMS because XKMS is a client-to-server scheme while SKS/KeyGen2
is primarily a server-to-client system the same way as HTML5's <keygen>.

I guess SKS/KeyGen2 is dismissed since it is not a "standard" or an SDO
work item, but given the ill fate of XKMS I'm not too concerned about that :-)

It is in this context also worth mentioning:
http://datatracker.ietf.org/wg/keyprov/charter
http://www.oasis-open.org/committees/tc_home.php?wg_abbrev=kmip

Anders

> 
> cheers,
> 
> Dan
> 
> 
Received on Wednesday, 2 November 2011 17:52:37 GMT

This archive was generated by hypermail 2.2.0+W3C-0.50 : Wednesday, 2 November 2011 17:52:38 GMT