[openscreenprotocol] [Auth] Challenge/Response over TLS (#122) from nigelcearnshaw via GitHub on 2018-12-05 (public-webscreens@w3.org from December 2018)

From: nigelcearnshaw via GitHub <sysbot+gh@w3.org>
Date: Wed, 05 Dec 2018 16:08:03 +0000
To: public-webscreens@w3.org
Message-ID: <issues.opened-387829150-1544026082-sysbot+gh@w3.org>

nigelcearnshaw has just created a new issue for https://github.com/webscreens/openscreenprotocol:

== [Auth] Challenge/Response over TLS ==
Just reviewing the outcome of the [last F2F meeting](https://www.w3.org/2018/10/26-webscreens-minutes.html#x06) during which it was resolved to further investigate the viability of a passcode related non-pake challenge-response mechanism over an already established TLS secure authenticated channel.

Am I right in assuming this requires all displays to be fitted with a confidential private key and corresponding public key certified by a certificate authority commonly trusted by most browsers?
If so, is this typically the case in the current market place?

Please view or discuss this issue at https://github.com/webscreens/openscreenprotocol/issues/122 using your GitHub account

Received on Wednesday, 5 December 2018 16:08:05 UTC