Question related the the 'Documents in the cloud use case' from Nick Van den Bleeken on 2013-11-05 (public-webcrypto@w3.org from November 2013)

From: Nick Van den Bleeken <Nick.Van.den.Bleeken@inventivegroup.com>
Date: Tue, 5 Nov 2013 16:07:05 +0000
To: "public-webcrypto@w3.org" <public-webcrypto@w3.org>
CC: "arun@mozilla.com" <arun@mozilla.com>
Message-ID: <6AB99094-572C-4C36-AB89-BF769D9915C6@inventivegroup.com>

Hi,

I have a problem understanding the ‘Documents in the Cloud' use case [1]

Bullet 1 states that “...it generates both signature and encryption key pairs. Derivation may be similar to the”

But shouldn’t the encryption keys be derived from a password or passphrase using for example PBKDF2? If not, I don’t see how you can decrypt the documents stored in the cloud using another web browser (which even might not have generated its key pairs at this moment). Are I missing something?

Kind regards,

Nick

1: http://www.w3.org/TR/2013/WD-webcrypto-usecases-20130108/#savemystuff

________________________________

Inventive Designers' Email Disclaimer:
http://www.inventivedesigners.com/email-disclaimer

Received on Tuesday, 5 November 2013 16:08:22 UTC