- From: <bugzilla@jessica.w3.org>
- Date: Tue, 19 Jun 2012 18:49:36 +0000
- To: public-html-bugzilla@w3.org
https://www.w3.org/Bugs/Public/show_bug.cgi?id=16548 --- Comment #5 from David Dorwin <ddorwin@google.com> 2012-06-19 18:49:35 UTC --- (In reply to comment #4) > I think "to" part is better. > But I wonder how the key is generate?: > from example > it seems you generate a key using uinit8array([xx,xx,xx,....]). > Do you mean the key is hardcoded in webpage? everybody can see or modify it? The examples use Clear Key where the key is actually in the clear. Other key systems might use licenses or otherwise encrypt the data passed to addKey(). > I have thought that the key may be generated by event cast by > generateKeyRequest, then we use e.data fetch the key for following > processing.And the key in the data is not visible to user or can not be > recorgnize by user. generateKeyRequest() generates a message to send to the key server to request the key. This might be a "license request". The application sends this message to the server, which will reply with a key/license, which the application provides to the CDM with addKey(). See the response above about protecting the key. -- Configure bugmail: https://www.w3.org/Bugs/Public/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are the QA contact for the bug.
Received on Tuesday, 19 June 2012 18:49:38 UTC