W3C home > Mailing lists > Public > w3c-ietf-xmldsig@w3.org > January to March 2007

Fw: Implementing XML-based security protocols in Firefox

From: Anders Rundgren <anders.rundgren@telia.com>
Date: Sun, 25 Mar 2007 09:14:31 +0200
Message-ID: <001601c76ead$3c629640$82c5a8c0@arport2v>
To: <w3c-ietf-xmldsig@w3.org>

F.Y.I.

To: <dev-tech-crypto@lists.mozilla.org>
Sent: Sunday, March 25, 2007 09:12
Subject: Implementing XML-based security protocols in Firefox


Hi,
I just wonder if any of you guys could give me some input on how
to implement an XML-based security protocol in Firefox.  To give
you an idea of what is called for, please take a peek in:
http://webpki.org/WASP-tutorial.pdf

Although the document refers to a "WebSign" standards proposal, the
scope is a larger set of related standards proposals, currently including:

WASP: WebSigning
WebAuth: Replacement for TLS-client-authentication
Bounce: Secure browser redirect
PKIProv: Replacement for KeyGen, generateCRMFrequest and Xenroll

An initial question would be: is there any general-purpose XML support
API in Firefox?

WASP and WebAuth can be tested in a configuration where a local
web-proxy is used as a signature plugin:
http://upi-using-service.webpki.org
(in this setup the local proxy is on the Internet to allow testing without
downloads)

The next step is doing this in the browser itself.  I intend to look closely
into the many CardSpace projects that should be pretty related
although they do not build on the MIME-trigger mechanism that is
the common denominator for the mentioned standards proposals.

thanx
Anders Rundgren
Received on Sunday, 25 March 2007 07:14:42 GMT

This archive was generated by hypermail 2.2.0+W3C-0.50 : Sunday, 25 March 2007 07:14:43 GMT