Re: Last call for Use-cases/Goals for web crypto charter

----- Original Message -----
> From: "Brian Smith" <bsmith@mozilla.com>
> To: "David Dahl" <ddahl@mozilla.com>
> Cc: public-identity@w3.org, "Andrew Sutherland" <asutherland@asutherland.org>
> Sent: Friday, November 25, 2011 12:00:23 PM
> Subject: Re: Last call for Use-cases/Goals for web crypto charter
> David Dahl wrote:
> > 2. LocalStorage encryption
> 
> Please be more specific here. Could a browser satisfy this use case by
> just encrypting LocalStorage all the time, automatically? Or are you
> expecting that the encryption key would be shared with the server
> (i.e. the opposite of the "encrypt file before sending to the server"
> use case)?

Yes, perhaps the encryption 'key id' is shared with the server. Encrypting LocalStorage all of the time seems like a waste of cycles as most localStorage data is probably OK as plain text.

Cheers,

David

Received on Friday, 25 November 2011 18:29:41 UTC