[Bug 25721] extractable keys should be disabled by default from bugzilla@jessica.w3.org on 2014-09-24 (public-webcrypto@w3.org from September 2014)

From: <bugzilla@jessica.w3.org>
Date: Wed, 24 Sep 2014 12:09:42 +0000
To: public-webcrypto@w3.org
Message-ID: <bug-25721-7213-eEtyJKxoSV@http.www.w3.org/Bugs/Public/>

https://www.w3.org/Bugs/Public/show_bug.cgi?id=25721

--- Comment #33 from Harry Halpin <hhalpin@w3.org> ---
(In reply to Harry Halpin from comment #32)
> (In reply to Richard Barnes from comment #31)
> > Thanks for this analysis, Mark.  Treating this as possible future work seems
> > sensible to me.  At lest the "non-extractable-only mode" feature is
> > something for which I can understand how it works and roughly what the value
> > proposition is, even if I don't necessarily think it's worth doing.
> 
> Again, I agree with Mark's analysis. The Web does not currently work this
> way, but that means a whole class of high-value applications with externally
> verified trust and end-to-end encryption without a totally trusted server
> are excluded from the Web. 
> 
> Yet simply making keys non-extractable all the time does not actually fix
> the situation.  Thus, I will formally raise the point of trusted Javascript
> with ensuring that private key material isn't extracted as a example to the
> Web Application Security Working Group.
> 
> I believe the Web should support such functionality and that this is within
> the scope of a re-chartered Web Application Security Working Group. I will
> email Web Application Security describing the problem. 
> 
> If we can get the charters to re-align, then it may even be within scope of
> joint work between the Web Application Security Working Group and a
> re-chartered Web Cryptography Working Group.
> 
> However, right now I don't see how we can address this issue in a way that
> meaningfully resolves Tom and Elijah's worry, because in effect if one
> doesn't trust the server 100%, the Web is broken for your application. 
> 
> I believe this will address the reviewers concerns.

Formal request sent to Web Application Security Working Group about how to
included attestations for Javascript and to Web Cryptography Working Group for
secure key storage in their re-chartering, as well as cc'ing Web Security IG. I
believe that resolves the bug and formal objection, hoping that the work item
is taken on in future re-chartering. 

Thus, we accept your use-case Tom, but it's going to be a major change to the
Web to get it to work - a change that goes outside of the scope of this API in
its current form, but one that can be tackled by a larger effort around
attestations of Javascript and possibly better key storage. If you can provide
any pointers to possible solutions on the public Web Security IG, we'd be
interested. 

http://lists.w3.org/Archives/Public/public-webappsec/2014Sep/0098.html

-- 
You are receiving this mail because:
You are on the CC list for the bug.

Received on Wednesday, 24 September 2014 12:09:48 UTC