- From: Manu Sporny <msporny@digitalbazaar.com>
- Date: Sun, 12 Apr 2015 23:28:52 -0400
- To: Web Payments IG <public-webpayments-ig@w3.org>
The WebAppSec group is considering the publication of a FPWD for a Credentials API by Google (Mike West). The API is very concerning as it puts the browsers completely in control of credential storage (with no synchronization story) and it won't cover high-stakes credentials (such as ones needed for KYC) that need to be shared between websites. This could really throw a wrench in this group's suggestion that a Credentials WG is created at W3C. It would also harm the creation of a unified credentials API that seems to be a requirement for many of the use cases in this group. Unfortunately, WebAppSec sent out a Call for Consensus last Friday wrt. a Credentials API FPWD which closes on April 17th (end of this week). Chairs, could we please put this on the Agenda ASAP. We need to respond to the CfC before this Friday. https://lists.w3.org/Archives/Public/public-webappsec/2015Apr/0097.html -- manu -- Manu Sporny (skype: msporny, twitter: manusporny, G+: +Manu Sporny) Founder/CEO - Digital Bazaar, Inc. blog: The Marathonic Dawn of Web Payments http://manu.sporny.org/2014/dawn-of-web-payments/
Received on Monday, 13 April 2015 03:29:16 UTC