W3C home > Mailing lists > Public > public-webcrypto-comments@w3.org > December 2012

Re: Pre-provisioned Keys? No, the Platforms aren't ready

From: Mark Watson <watsonm@netflix.com>
Date: Sun, 2 Dec 2012 00:40:08 +0000
To: Anders Rundgren <anders.rundgren@telia.com>
CC: "public-webcrypto-comments@w3.org" <public-webcrypto-comments@w3.org>
Message-ID: <E2CA2779-FC3A-4B77-A7DB-1FD179F3DCB3@netflix.com>
When you say 'with Netflix as an exception', you should say 'with any high quality commercial video service as an exception'. The requirements that lead us to need pre-provisioned keys are not mainly of our own making and others are subject to the same constraints. You're talking about millions upon millions of devices, billions of hours of streaming, 30-40% of all peak hour Internet traffic (in the US).

 Just a small 'exception'.

...Mark

Sent from my iPhone

On Dec 1, 2012, at 6:41 AM, "Anders Rundgren" <anders.rundgren@telia.com> wrote:

> One more reason for dropping pre-provisioned keys from the charter is that almost all
> existing uses of pre-provisioned keys (with Netflix as a notable exception) involve PIN-protected
> keys which isn't supported by any of the current mainstream computing platforms
> unless you add specific middleware and/or externally configured crypto hardware.
> 
> Anders
> 
> 
Received on Sunday, 2 December 2012 00:40:38 GMT

This archive was generated by hypermail 2.2.0+W3C-0.50 : Sunday, 2 December 2012 00:40:38 GMT