W3C home > Mailing lists > Public > w3c-ietf-xmldsig@w3.org > January to March 2007

Fw: Implementing XML-based security protocols in Firefox

From: Anders Rundgren <anders.rundgren@telia.com>
Date: Sun, 25 Mar 2007 09:14:31 +0200
Message-ID: <001601c76ead$3c629640$82c5a8c0@arport2v>
To: <w3c-ietf-xmldsig@w3.org>


To: <dev-tech-crypto@lists.mozilla.org>
Sent: Sunday, March 25, 2007 09:12
Subject: Implementing XML-based security protocols in Firefox

I just wonder if any of you guys could give me some input on how
to implement an XML-based security protocol in Firefox.  To give
you an idea of what is called for, please take a peek in:

Although the document refers to a "WebSign" standards proposal, the
scope is a larger set of related standards proposals, currently including:

WASP: WebSigning
WebAuth: Replacement for TLS-client-authentication
Bounce: Secure browser redirect
PKIProv: Replacement for KeyGen, generateCRMFrequest and Xenroll

An initial question would be: is there any general-purpose XML support
API in Firefox?

WASP and WebAuth can be tested in a configuration where a local
web-proxy is used as a signature plugin:
(in this setup the local proxy is on the Internet to allow testing without

The next step is doing this in the browser itself.  I intend to look closely
into the many CardSpace projects that should be pretty related
although they do not build on the MIME-trigger mechanism that is
the common denominator for the mentioned standards proposals.

Anders Rundgren
Received on Sunday, 25 March 2007 07:14:42 UTC

This archive was generated by hypermail 2.3.1 : Tuesday, 6 January 2015 21:21:40 UTC