PROPOSAL: Close ISSUE-19 - Does it make sense to have authorized-origin and specific-origin keys from Ryan Sleevi on 2013-01-31 (public-webcrypto@w3.org from January 2013)

From: Ryan Sleevi <sleevi@google.com>
Date: Thu, 31 Jan 2013 11:11:16 -0800
To: public-webcrypto@w3.org
Message-ID: <CACvaWvaR6Se_quO_=903e7fVBMhMHJHy0Pp3Cn=+bzHwxq8fHw@mail.gmail.com>

http://www.w3.org/2012/webcrypto/track/issues/19

I would like to propose that we CLOSE ISSUE-19. The group has not made
any progress on this issue since it was raised in August 2012, nor
have there been any proposals on how to resolve this.

The current specification limits storage to single-origin, consistent
with all other web storage APIs. There have been no proposal for
origin-authorized keys at this point, and such proposals would
introduce significant security concerns that would need to be
resolved.

I would like to propose that this issue be CLOSED against the current
specification.

Received on Thursday, 31 January 2013 19:11:43 UTC