- From: Richard Barnes <rbarnes@bbn.com>
- Date: Fri, 18 Nov 2011 10:48:24 +0800
- To: Anders Rundgren <anders.rundgren@telia.com>
- Cc: "public-identity@w3.org" <public-identity@w3.org>
Hi Anders, I'm confused. DOMCrypt and OBC solve completely different problems. DOMCrypt is about providing a crypto API to Javascript. OBC is about authentication / identity binding at the TLS layer (there's no JS interaction). Also, FWIW, OBC has been proposed for work in the IETF TLS working group: <http://tools.ietf.org/html/draft-balfanz-tls-obc-01> --Richard On Nov 18, 2011, at 4:21 AM, Anders Rundgren wrote: > Google has silently already launched their Origin Bound Certficate TLS > extension in Chrome. IMO, this is the only way forward. > > If Mozilla is serious about DomCrypt, Mozilla must release "as is"; > nobody will care otherwise. > > Google did the same with their wallet which is a REALLY interesting > thing. Unfortunately the architecture seems to be secret. > > Anders >
Received on Friday, 18 November 2011 02:48:58 UTC