W3C home > Mailing lists > Public > public-identity@w3.org > November 2011

Re: DomCrypto - Revised Strategy?

From: Richard Barnes <rbarnes@bbn.com>
Date: Fri, 18 Nov 2011 10:48:24 +0800
Cc: "public-identity@w3.org" <public-identity@w3.org>
Message-Id: <574C5B5A-8AAF-4DC3-B15A-099DE67E730E@bbn.com>
To: Anders Rundgren <anders.rundgren@telia.com>
Hi Anders,

I'm confused. DOMCrypt and OBC solve completely different problems.  DOMCrypt is about providing a crypto API to Javascript.  OBC is about authentication / identity binding at the TLS layer (there's no JS interaction).  

Also, FWIW, OBC has been proposed for work in the IETF TLS working group:


On Nov 18, 2011, at 4:21 AM, Anders Rundgren wrote:

> Google has silently already launched their Origin Bound Certficate TLS
> extension in Chrome.  IMO, this is the only way forward.
> If Mozilla is serious about DomCrypt, Mozilla must release "as is";
> nobody will care otherwise.
> Google did the same with their wallet which is a REALLY interesting
> thing.  Unfortunately the architecture seems to be secret.
> Anders
Received on Friday, 18 November 2011 02:48:58 UTC

This archive was generated by hypermail 2.3.1 : Tuesday, 6 January 2015 20:00:47 UTC