W3C home > Mailing lists > Public > public-identity@w3.org > November 2011

Re: Last call for Use-cases/Goals for web crypto charter

From: David Dahl <ddahl@mozilla.com>
Date: Fri, 25 Nov 2011 10:29:04 -0800 (PST)
To: Brian Smith <bsmith@mozilla.com>
Cc: public-identity@w3.org, Andrew Sutherland <asutherland@asutherland.org>
Message-ID: <806333495.183617.1322245744911.JavaMail.root@zimbra1.shared.sjc1.mozilla.com>
----- Original Message -----
> From: "Brian Smith" <bsmith@mozilla.com>
> To: "David Dahl" <ddahl@mozilla.com>
> Cc: public-identity@w3.org, "Andrew Sutherland" <asutherland@asutherland.org>
> Sent: Friday, November 25, 2011 12:00:23 PM
> Subject: Re: Last call for Use-cases/Goals for web crypto charter
> David Dahl wrote:
> > 2. LocalStorage encryption
> 
> Please be more specific here. Could a browser satisfy this use case by
> just encrypting LocalStorage all the time, automatically? Or are you
> expecting that the encryption key would be shared with the server
> (i.e. the opposite of the "encrypt file before sending to the server"
> use case)?

Yes, perhaps the encryption 'key id' is shared with the server. Encrypting LocalStorage all of the time seems like a waste of cycles as most localStorage data is probably OK as plain text.

Cheers,

David
Received on Friday, 25 November 2011 18:29:41 GMT

This archive was generated by hypermail 2.2.0+W3C-0.50 : Friday, 25 November 2011 18:29:41 GMT