W3C home > Mailing lists > Public > public-webcrypto@w3.org > August 2012

Re: origin bound key generation

From: Ryan Sleevi <sleevi@google.com>
Date: Tue, 21 Aug 2012 18:03:16 -0700
Message-ID: <CACvaWvbnQPk6eRK8j2TbH8T-GgSkVwFGhfRfhxn34zFvVbdxvQ@mail.gmail.com>
To: Mountie Lee <mountie.lee@mw2.or.kr>
Cc: Web Cryptography Working Group <public-webcrypto@w3.org>
On Tue, Aug 21, 2012 at 5:55 PM, Mountie Lee <mountie.lee@mw2.or.kr> wrote:
> Hi.
> when I read latest draft API,
> I have some question.
> is it possible
> user-A generate key-A from origin-A
> and user-A use key-A in origin-B?

Depends on the user agent.

What doesn't depend on the user agent is, as currently specified,
there is no way for origin-B to request access to key-A from origin-A.
Nor is there, as currently specified, a way for origin-A to grant
access to key-A to origin-B proactively (eg: during generation).

> does the key-A is bounded to origin-A?

Absent any collusion of the user agent, yes.

> regards
> mountie.
> =======================================
> PayGate Inc.
> for Korea, Japan, China, and the World
Received on Wednesday, 22 August 2012 01:03:44 UTC

This archive was generated by hypermail 2.4.0 : Friday, 17 January 2020 19:01:25 UTC