Re: origin bound key generation

On Tue, Aug 21, 2012 at 5:55 PM, Mountie Lee <> wrote:
> Hi.
> when I read latest draft API,
> I have some question.
> is it possible
> user-A generate key-A from origin-A
> and user-A use key-A in origin-B?

Depends on the user agent.

What doesn't depend on the user agent is, as currently specified,
there is no way for origin-B to request access to key-A from origin-A.
Nor is there, as currently specified, a way for origin-A to grant
access to key-A to origin-B proactively (eg: during generation).

> does the key-A is bounded to origin-A?

Absent any collusion of the user agent, yes.

> regards
> mountie.
> =======================================
> PayGate Inc.
> for Korea, Japan, China, and the World

Received on Wednesday, 22 August 2012 01:03:44 UTC