- From: Jim Schaad <ietf@augustcellars.com>
- Date: Wed, 10 Jul 2013 12:28:30 -0700
- To: <public-webcrypto@w3.org>
I have a worry about doing the key wrap/unwrap that I think needs to be addressed. I do not see how we can avoid doing some degree of propagation of the extractable tag in the case of doing a key agreement/key derivation operation. While using RSA to wrap a key can persevere a JWK directly, this is not true if one is using DH or ECDH keys for the encryption operation. In this case the DH/ECDH extractability needs to be propagated forward to the key agree key. I wonder if this means we should not always propagate the extractability forward when doing both key derivation and key unwrap. Jim
Received on Wednesday, 10 July 2013 19:29:53 UTC