W3C home > Mailing lists > Public > public-webcrypto@w3.org > January 2013

PROPOSAL: Close ISSUE-19 - Does it make sense to have authorized-origin and specific-origin keys

From: Ryan Sleevi <sleevi@google.com>
Date: Thu, 31 Jan 2013 11:11:16 -0800
Message-ID: <CACvaWvaR6Se_quO_=903e7fVBMhMHJHy0Pp3Cn=+bzHwxq8fHw@mail.gmail.com>
To: public-webcrypto@w3.org
http://www.w3.org/2012/webcrypto/track/issues/19

I would like to propose that we CLOSE ISSUE-19. The group has not made
any progress on this issue since it was raised in August 2012, nor
have there been any proposals on how to resolve this.

The current specification limits storage to single-origin, consistent
with all other web storage APIs. There have been no proposal for
origin-authorized keys at this point, and such proposals would
introduce significant security concerns that would need to be
resolved.

I would like to propose that this issue be CLOSED against the current
specification.
Received on Thursday, 31 January 2013 19:11:43 GMT

This archive was generated by hypermail 2.2.0+W3C-0.50 : Thursday, 31 January 2013 19:11:43 GMT