- From: Tony Arcieri <bascule@gmail.com>
- Date: Mon, 25 Apr 2016 08:15:53 -0700
- To: Martin Paljak <martin.paljak@ria.ee>
- Cc: "public-web-security@w3.org" <public-web-security@w3.org>
Received on Monday, 25 April 2016 15:16:42 UTC
On Sun, Apr 24, 2016 at 11:17 PM, Martin Paljak <martin.paljak@ria.ee> wrote: > It amazes me that for some reason many people seem to equate "eID" (like > PIV) and "PKCS#11". > > Browser vendors don't want it (for a good reason) and nobody sane enough > is proposing to include something as generic and low level > implementation specific as PKCS#11 *into the browser*. This has been > discussed over and over again. Yes it has been discussed over and over again. I was at the W3C Web Crypto Next Steps workshop in Mountain View in September 2014, where representatives from dozens of national ID providers were in attendance and there was ample discussion of building a PKCS#11 bridge to browsers. While you may think it's misguided (and certainly I don't disagree), and while the people involved may have changed their tune in the intervening year and a half, this was the predominant approach discussed at that workshop. -- Tony Arcieri
Received on Monday, 25 April 2016 15:16:42 UTC