Re: Non-repudiation using WebCrypto API

Non-repudiation is IMO a technically, legally, and politically overloaded term
because you can always say "it wasn't me".

However, creating trustworthy signatures (given that your platform is still intact NB),
should IMO be feasible otherwise the statement:

    "The ability to select credentials and sign statements can be necessary to
      perform high-value transactions such as those involved in finance, corporate
      security, and identity-related claims about personal data"

taken from the charter:
would be downright misleading.


Received on Tuesday, 18 September 2012 10:44:28 UTC