W3C home > Mailing lists > Public > public-webcrypto@w3.org > August 2012

ACTION-38: pre-shared keys

From: Mark Watson <watsonm@netflix.com>
Date: Mon, 27 Aug 2012 20:40:29 +0000
To: Web Cryptography Working Group <public-webcrypto@w3.org>
Message-ID: <A1F1B8EA-9FCB-4E05-992E-24B27E8EFEBB@netflix.com>
All,

I had an action to propose text on pre-shared keys for the FPWD. This might be appropriate as a non-normative introduction to the Key interface, Section 10.

"This specification provides a uniform interface for many different kinds of keying material managed by the user agent. This may include keys that have been generated by the user agent, derived from other keys by the user agent, imported to the user agent through user actions or using this API, pre-provisioned within software or hardware to which the user agent has access or made available to the user agent in other ways. The term key refers broadly to any secret keying material including actual keys for cryptographic operations and secret values obtained within key derivation or exchange operations.

Editor's note: For the specific case of pre-provisioned keys it is tbd how attributes associated with those keys should be exposed and in particular whether there is a need to standardize a mechanism for exposing opaque unique identifiers for such keys:. See ISSUE-25."

Also,
- I think we should clarify the definition of the Key.id attribute as to the scope of the uniqueness of the identifier. i.e. that it has local scope 
- in the note associated with userAttributes, please also reference ISSUE-25 (If we chose to expose pre-provisioned information this way then the name userAttributes and the definition need to change, because those may not be application-specific).
- PKCS#3 is missing from the references

ůMark
Received on Monday, 27 August 2012 20:40:58 UTC

This archive was generated by hypermail 2.4.0 : Friday, 17 January 2020 19:01:26 UTC