Re: WebCrypto namespace from Ryan Sleevi on 2013-03-13 (public-webcrypto-comments@w3.org from March 2013)

From: Ryan Sleevi <sleevi@google.com>
Date: Wed, 13 Mar 2013 06:19:13 -0700
To: Jeffrey Walton <noloader@gmail.com>
Cc: "public-webcrypto-comments@w3.org" <public-webcrypto-comments@w3.org>
Message-ID: <CACvaWvboG_RWCeKCi+a+rwVDtkmk23A8cjX5xrr=iBHS3KLUFg@mail.gmail.com>

On Mon, Mar 11, 2013 at 8:56 PM, Jeffrey Walton <noloader@gmail.com> wrote:
> Hi Ryan,
>
> I was trying to find a way to help developers understand that some
> constructs are not as safe as others. For example, MD5 vs SHA or
> PKCS#1 Padding vs OAEP. I was thinking a namespace could be used to
> help make the distinction. For example, MD5 and PKCS#1 could be placed
> in an 'unsafe', 'weak', or 'interop' namespace. Within the
> documentation, you could offer a warning. The additional typing alone
> would probably be all the deterrent you need :)

This has been discussed repeatedly in the WG. To attempt to summarize
explicitly why this has *not* been done, it's because it makes a bad
API design, no matter how alluring it may seem. Once code is written
using say, "SHA1", then if (when) SHA-1 fails like MD5, you've got to
update the API, as well as rewrite all the existing code. It no longer
becomes possible to write interoperable code.

There's much more discussion on this - notions such as restricting the
use of certain algorithms to non-drive-by-web, restricting them with a
"special" API call, etc. These are all still topics of discussion, but
various concerns have been expressed with all of them.

>
> Otherwise, developers will jump on the old band wagon they know even
> though WebCrypto has given them more secure or desirable options. Put
> another way, how do you help a developer or save a developer from
> himself/herself when he/she is under tremendous pressures to deliver
> (and may not have the time to research)?
>
> Devil's advocate: how many developers will take the time to locate the
> paper "The Million Message Attack in 15 000 Messages" and understand
> the implications on a high volume web server?
>
> Jeff

The archives cover this discussion at length.

>
> On Mon, Mar 11, 2013 at 11:00 PM, Ryan Sleevi <sleevi@google.com> wrote:
>> DOM APIs don't really have namespaces. The closest approximation is the fact
>> that the SubtleCrypto interface provides the low-level interface, as part of
>> window.crypto.subtle.
>>
>> Perhaps you had a different concept in mind? Note this is not a Constructor
>> pattern as seen in some non-DOM APIs (Most DOM APIs go in the global scope.)
>>
>> On Mar 11, 2013 7:53 PM, "Jeffrey Walton" <noloader@gmail.com> wrote:
>>>
>>> Hi All,
>>>
>>> Will WebCrypto be going into its own namespace?
>>>
>>> It does not appear to be discussed at
>>> https://dvcs.w3.org/hg/webcrypto-api/raw-file/tip/spec/Overview.html.

Received on Wednesday, 13 March 2013 13:19:46 UTC