- From: Anders Rundgren <anders.rundgren@telia.com>
- Date: Fri, 24 Aug 2012 14:04:43 +0200
- To: "public-webcrypto-comments@w3.org" <public-webcrypto-comments@w3.org>
Before taking on any major work to solve the multi-domain issue, I think it is worthwhile studying one existing already implemented and relatively widely used such solution. Is there anything fundamentally wrong with this solution except that it isn't a JS API? I could imagine an X.509 client-certificate extension that would restrict the list of possible relying parties to what fits the use-case. A demo-server that asks for you to select one from *all* of your certificates: https://www.apache-ssl.org/cgi/cert-export BTW, multi-domain symmetric keys doesn't look like a terribly useful combination. Anders
Received on Friday, 24 August 2012 12:05:43 UTC