Sorry to appear so late, busy weeks!.
On Mon, Dec 2, 2013 at 9:27 AM, fma spew <fmas...@gmail.com> wrote:
> 1) WebCrypto does not initially plan support for making end-user
> certificates available.
>
W3C WG divided this on 2 specs: Webcrypto and Key Discovery.
Webcrypto is about operations like sign(), cypher()...but doesnt take care
of "where the keys came from", just use them. Kind of correct spec, maybe
with some lacks (IMHO)
Key Discovery is about how the keys are generated, but they doesnt consider
user-keys but server-keys.
When i asked them about using user keys/certs to sign documents -IMHO- they
werent very open to discussion, and more or less said "it is not going to
happen (at least in this spec version)".
My suspect is that Google is pushing for their own platform (U2F, Wallet,
Tee) and Netflix is pushing form DRM, but none for document signing.
Mozilla had some guy working with WG, David Dahl, but seems not working at
Mozilla anymore, and i dont know if anyone from Mozilla still there.
As we are doing "the same thing" as you, we are also worried about our
future, and this is what we plan to do:
- Use URL schemes (myapp://sign=ABC...Z) to invoke a local application
The main problem is that you cannoit return the signature to browser,
so you need an intermediate service/server
- Use a local application running as a service (listening on
localhost:1234) to accept requests.
The main problem is that cannot be made on some systems like iOs or RT.
2) Our use case, currently implemented as a NPAPI plug-in, needs Mozilla to
> continue supporting NPAPI until WebCrypto makes end-user certficates
> available.
>
We are working on the app to avoid doing 2 (or more) plugins
> I have a disturbing feeling. I hope that Microsoft's IE does not become the
> less problematic option for us and our customers.
>
Probably it will be (as it is ATM) for running Java Applets
Dont hesitate to contact me if you want some discussion ;)
_______________________________________________
dev-platform mailing list
dev-platform@lists.mozilla.org
https://lists.mozilla.org/listinfo/dev-platform
