- From: Alexey Proskuryakov <ap@webkit.org>
- Date: Thu, 14 Nov 2013 00:16:12 -0800
- To: Ryan Sleevi <sleevi@google.com>
- Cc: Mark Watson <watsonm@netflix.com>, "public-webcrypto@w3.org" <public-webcrypto@w3.org>
(re-sent from correct address) 13 ΞΟΡΒ. 2013 Η., Χ 0:00, Ryan Sleevi <sleevi@google.com> ΞΑΠΙΣΑΜ(Α): > Even aside from the wrapping concern (since JOSE has declared that > wrapping is a form of encryption, ergo it reuses the "enc" usage), it > seems desirable to be able to express the 'direction' of a key to > prevent cryptographic misuse, much in the same way that the selection > of algorithm prevents misuse. I agree that this is useful, however I'm not sure if it follows that it should be part of key format. The reason for adding "extractable" to key format is to enforce non-extractability for keys that are unwrapped by less trusted JavaScript code. Everything else can be just passed as arguments to importKey or unwrapKey, and doesn't have to be protected from JavaScript as far as I can tell. - WBR, Alexey Proskuryakov
Received on Thursday, 14 November 2013 08:16:41 UTC