who own the key? from Mountie Lee on 2013-04-25 (public-webcrypto@w3.org from April 2013)

From: Mountie Lee <mountie@paygate.net>
Date: Thu, 25 Apr 2013 14:02:24 -0700
To: Web Cryptography Working Group <public-webcrypto@w3.org>
Message-ID: <CAE-+aYLDduM6yKTdZC7MzFTBTpL2FzGpMe6ez60+Rfg7s03z1w@mail.gmail.com>

Hi.

I remember we have discussed about the ownership of key.

to clarify the key ownership, I send this mail.

who own the key?
is it belong to user or application of service provider?
who has control for generated key?

is the view of certificate side, key pair is belong to user.
but the key pair of current low level API, it seams belong to application
side.

is my understanding correct?

-- 
Mountie Lee

PayGate
CTO, CISSP
Tel : +82 2 2140 2700
E-Mail : mountie@paygate.net

=======================================
PayGate Inc.
THE STANDARD FOR ONLINE PAYMENT
for Korea, Japan, China, and the World

Received on Thursday, 25 April 2013 21:03:08 UTC