W3C home > Mailing lists > Public > public-webappsec@w3.org > April 2015

Re: Overlap with Credentials/Web Payments CG (was Re: CfC to publish a FPWD of Credential Management; ending April 17th.)

From: Janusz Majnert <jmajnert@gmail.com>
Date: Wed, 15 Apr 2015 14:57:21 +0200
Message-ID: <CAOeF0exeG6nxM1ywpdmOynQUHT7PPTWEr55X4g5aO4+2ykuMrw@mail.gmail.com>
To: Adrian Hope-Bailie <adrian@hopebailie.com>
Cc: Brad Hill <hillbrad@gmail.com>, "public-webappsec@w3.org" <public-webappsec@w3.org>
2015-04-15 14:39 GMT+02:00 Adrian Hope-Bailie <adrian@hopebailie.com>:
> I think that at this point it should be no problem for
> WebAppSec to rename the Credential Management API to something like
> "Password Manager API". The interfaces could use "identity" instead of
> "credential"?
>
> +1 as a start.
> However this does miss the opportunity for the spec to be specifically
> accommodating of the work and plans from the Web Payments IG and Credentials
> CG which do overlap with the stated Future Work of the spec.
> It also means that should a Credentials API be proposed in future (highly
> likely it is currently spec'ed by the Credentials CG) we end up with two
> APIs that will eventually begin to overlap.
> Is that a problem?

This wouldn't be the first time it happened... But yes, it could lead
to some confusion.

>
> Supporting linked-data as the mechanism for expressing identity and
> credentials is the greatest bang-for-buck change that could be made to the
> current spec.
> Is this beyond achieving?

Not sure. See below.

>
> As far as I can tell all that the Credentials CG and Web Payments IG are
> asking for is some time to give this a more thorough analysis before the
> spec goes to FPWD and some active collaboration from the spec's editors.
> Is there a good reason to deny this?

I'm not trying to deny it, I don't think anyone is trying to do so.
But we need to concentrate on showing what the specific issues are and
how they can be addressed. It would be great if concerned members of
Credential and Web Payments CGs could raise issues on github instead
of reiterating the same points in lengthy emails :-)


Regards,
Janusz Majnert
Received on Wednesday, 15 April 2015 12:57:50 UTC

This archive was generated by hypermail 2.3.1 : Monday, 23 October 2017 14:54:12 UTC