- From: Mountie Lee <mountie@paygate.net>
- Date: Sun, 8 May 2016 16:39:15 +0900
- To: public-blockchain-workshop@w3.org
- Cc: public-blockchain@w3.org
Received on Sunday, 8 May 2016 07:47:20 UTC
hi. let me raise issue for SOP and blockchain private key. when we expand usage of blockchain private to Web, Web SOP will cause some difficult issues. private key can be generated/stored in secure element of client side. user will have ownership of private key and related assets. when the usage of key is restricted to specific origin, that is different from normal user expectations. many user will think, "my money can be used on any site when I want" but with SOP, "your money can be used on this site only" SOP is important security policy of Web. because the previous thinking are "some resources are from some origins" but now we have more requirements letting user have full control of assets which user has ownership. I need opinion for it. -- Mountie Lee PayGate CTO, CISSP Tel : +82 2 2140 2700 E-Mail : mountie@paygate.net
Received on Sunday, 8 May 2016 07:47:20 UTC