W3C home > Mailing lists > Public > public-webid@w3.org > May 2014

Re: A WebID Implementation => HTTPS Client Certificate Authentication lacks a useful filter mechanism.

From: Mo McRoberts <Mo.McRoberts@bbc.co.uk>
Date: Mon, 19 May 2014 23:13:57 +0000
To: Kingsley Idehen <kidehen@openlinksw.com>
CC: "public-webid@w3.org" <public-webid@w3.org>
Message-ID: <0D42CD5A-CD11-4446-A364-19D26CB7B8DF@bbc.co.uk>

On  2014-May-19, at 23:05, Kingsley Idehen <kidehen@openlinksw.com> wrote:

>> For WebID-X.509 a specific WebID policy OID would be ideal since it
>> doesn't interfere with anything else.
>
> And that would change what in regards to Browser behavior, in their current form?

Browsers which implemented it would only prompt for selection of certificates containing the extension which the server said it wanted (similarly to how the list is filtered now if you request client certs from specific CAs, but without it being so horribly kludgy).

Browsers which didnít implement it would behave as they do now.

Itís very sensible, and Iíd love to see it happen ó though Iím not about to hold my breath.

M.

--
Mo McRoberts - Chief Technical Architect - Archives & Digital Public Space,
Zone 2.12, BBC Scotland, 40 Pacific Quay, Glasgow G51 1DA.

Inside the BBC? My movements this week: http://neva.li/where-is-mo








-----------------------------
http://www.bbc.co.uk
This e-mail (and any attachments) is confidential and
may contain personal views which are not the views of the BBC unless specifically stated.
If you have received it in
error, please delete it from your system.
Do not use, copy or disclose the
information in any way nor act in reliance on it and notify the sender
immediately.
Please note that the BBC monitors e-mails
sent or received.
Further communication will signify your consent to
this.
-----------------------------
Received on Monday, 19 May 2014 23:14:29 UTC

This archive was generated by hypermail 2.4.0 : Friday, 17 January 2020 19:05:55 UTC