W3C home > Mailing lists > Public > public-webcrypto@w3.org > August 2012

Re: Support for generic authentication tokens

From: Wan-Teh Chang <wtc@google.com>
Date: Fri, 10 Aug 2012 17:51:55 -0700
Message-ID: <CALTJjxGszEPEfD9hk3LYjhhXqJAJdhGH+mgTKHp9qzd8kdqDJg@mail.gmail.com>
To: Mitch Zollinger <mzollinger@netflix.com>
Cc: "public-webcrypto@w3.org" <public-webcrypto@w3.org>
On Fri, Aug 10, 2012 at 5:13 PM, Mitch Zollinger <mzollinger@netflix.com> wrote:
>
> Also, as "Certificate" is only applicable to public/private keys, its
> inclusion in the Key interface seems a bit odd.

Certificates are common containers of public keys. This is why the
crypto API should have the notion of certificates, especially for
private key lookup/discovery.

Certificates don't need to be attributes of keys, but the API needs to
provide a way to look up the private key associated with a given
certificate.  This may just require us to store the public key as an
attribute of a private key.

Wan-Teh
Received on Saturday, 11 August 2012 00:52:23 UTC

This archive was generated by hypermail 2.4.0 : Friday, 17 January 2020 19:01:25 UTC