Re: Alternative proposal for the form signing using client-certificate


On Wed, Mar 9, 2016 at 2:46 AM, Anders Rundgren
<> wrote:
> - the other browser vendors are publicly considering dropping support for
> <keygen>

In fact I do not care so much about key generation in the browser. I
just hope they allow importing a certificate into a keystore, or
access to system's keystore.

> - smart cards have never worked particularly well in consumer computers

Depending who you ask. In Europe there are countries (like Estonia)
where they work pretty well and many people vote online.

Similarly in Slovenia there are state-issued certificates one can use
to work with government online.

> - practically all eID schemes have already take on other ways dealing with the Web

Yes, currently they use custom extension to make it work, if this is
what you mean "other ways". They use other non-standard ways to make
it work. What I would like to find is a standard way to make it work.

How much software instead of one simple HTML form element?

BTW, I asked already before, can somebody point me to those "other
ways" which really can replace eID schemes in the way that: you get a
3rd party verifiable statements, and that they are legal bounding in
the same way eID schemes are currently in countries in Europe? I have
not found any legal changes around that. So those claims have not yet
been supported.

What I see is that currently laws in Europe provide untapped
opportunities which cannot be build upon mostly because there is no
simple support for them in browsers. It really feels that this is just
because it is not known much in USA?



Received on Thursday, 10 March 2016 09:16:01 UTC