[Bug 27137] New: Incorrect usages for ECDSA key given by "Generate Key" from bugzilla@jessica.w3.org on 2014-10-23 (public-webcrypto@w3.org from October 2014)

From: <bugzilla@jessica.w3.org>
Date: Thu, 23 Oct 2014 00:27:52 +0000
To: public-webcrypto@w3.org
Message-ID: <bug-27137-7213@http.www.w3.org/Bugs/Public/>

https://www.w3.org/Bugs/Public/show_bug.cgi?id=27137

            Bug ID: 27137
           Summary: Incorrect usages for ECDSA key given by "Generate Key"
           Product: Web Cryptography
           Version: unspecified
          Hardware: PC
                OS: Linux
            Status: NEW
          Severity: normal
          Priority: P2
         Component: Web Cryptography API Document
          Assignee: sleevi@google.com
          Reporter: ericroman@google.com
                CC: public-webcrypto@w3.org

The current language for Generate Key says that:

-----------------
11. Set the [[usages]] internal slot of publicKey to be the empty list.
...
16. Set the [[usages]] internal slot of privateKey to be the usage intersection
of usages and [ "sign", "verify" ].
-----------------

This wouldn't yield a useful publicKey.

Instead I propose using the wording from RSA-SSA's "Generate Key" steps:

------------------
11. Set the [[usages]] internal slot of publicKey to be the usage intersection
of usages and [ "verify" ].
....
16. Set the [[usages]] internal slot of privateKey to be the usage intersection
of usages and [ "sign" ].
------------------

-- 
You are receiving this mail because:
You are on the CC list for the bug.

Received on Thursday, 23 October 2014 00:27:53 UTC