- From: Zoltan Kis via GitHub <sysbot+gh@w3.org>
- Date: Wed, 06 Nov 2019 13:25:22 +0000
- To: public-web-nfc@w3.org
The trust model Web NFC used to have so far is going to change. Web NFC message and Web NFC id are already gone, instead signature records are coming in. Security section will be updated soon. Sig-records will work with app-level policy enforcement, since they are based on private keys. It will affect how the NFC content is handled at app level (including automated use cases). (I don't know how many organizations will take the burden of signing, but it does offer content security.) However, AFAICT they won't affect platform level automatic dispatching. Since at the moment looks like this feature will not cause changing implementation-level security policies, just exposing signature records should be doable in this iteration. Or should it be a next-iteration feature? @leonhsl @riju -- GitHub Notification of comment by zolkis Please view or discuss this issue at https://github.com/w3c/web-nfc/issues/363#issuecomment-550307392 using your GitHub account
Received on Wednesday, 6 November 2019 13:25:23 UTC