[httpslocal/proposals] Initial step to trust a device (#3)

This is a meta issue to discuss how to trust a device at the first time. Unless we could rely on existing Web PKI, such an initial step would be required to determine whether the device would be the one that the user would really wish to connect. Possible approaches are:

- Displaying a dialog to let a user confirm the device [[1]](https://docs.google.com/document/d/170rFC91jqvpFrKIqG4K8Vox8AL4LeQXzfikBQXYPmzU/edit?usp=sharing))
- Asking a user to input a passcode for PAKE-based authentication [[2]](https://github.com/dajiaji/proposals/blob/abstract_proposal/draft_proposal_supporting_local_https_communication.md#51-approach-1)

Any additional suggestions or detailed comments for proposals are welcome!

-- 
You are receiving this because you are subscribed to this thread.
Reply to this email directly or view it on GitHub:
https://github.com/httpslocal/proposals/issues/3

Received on Tuesday, 18 September 2018 08:19:41 UTC