Re: Call for adoption - use case for "Trusted application, untrusted intermediary" from Sergio Garcia Murillo on 2018-11-28 (public-webrtc@w3.org from November 2018)

From: Sergio Garcia Murillo <sergio.garcia.murillo@gmail.com>
Date: Wed, 28 Nov 2018 10:07:53 +0100
To: Eric Rescorla <ekr@rtfm.com>, Bernard Aboba <Bernard.Aboba@microsoft.com>
Cc: Nils Ohlmeier <nohlmeier@mozilla.com>, public-webrtc@w3.org
Message-ID: <d3099aff-fa78-2aff-8487-a654fd5eba96@gmail.com>

On 28/11/2018 0:29, Eric Rescorla wrote:
>
>
>     [BA] The use case does not say that encryption keys are accessible
>     to the JS.
>
>     N26: "the browser must be able to obtain e2e keying material so as
>     to enable content to be rendered."
>
>
> Hmm... Would people be willing to modify this requirement to say that 
> the JS MUST NOT have e2e keying material?

My vote would be no for that.

Best regards

Sergio

Received on Wednesday, 28 November 2018 09:04:39 UTC