ACTION-38: pre-shared keys


I had an action to propose text on pre-shared keys for the FPWD. This might be appropriate as a non-normative introduction to the Key interface, Section 10.

"This specification provides a uniform interface for many different kinds of keying material managed by the user agent. This may include keys that have been generated by the user agent, derived from other keys by the user agent, imported to the user agent through user actions or using this API, pre-provisioned within software or hardware to which the user agent has access or made available to the user agent in other ways. The term key refers broadly to any secret keying material including actual keys for cryptographic operations and secret values obtained within key derivation or exchange operations.

Editor's note: For the specific case of pre-provisioned keys it is tbd how attributes associated with those keys should be exposed and in particular whether there is a need to standardize a mechanism for exposing opaque unique identifiers for such keys:. See ISSUE-25."

- I think we should clarify the definition of the attribute as to the scope of the uniqueness of the identifier. i.e. that it has local scope 
- in the note associated with userAttributes, please also reference ISSUE-25 (If we chose to expose pre-provisioned information this way then the name userAttributes and the definition need to change, because those may not be application-specific).
- PKCS#3 is missing from the references


Received on Monday, 27 August 2012 20:40:58 UTC