Although still shy, government people are slowly recognizing that WebSigning is a very smart way of using PKI, since it is interactive and that confidentiality is achieved by TLS in a transparent way.
I'm asked every now and then how to achieve a standard. One of the issues is that IE only runs on Windows and is thus not a "total solution" which it often is in an enterprise like the one I work for (RSA/EMC). Unfortunately creating and shipping a security extension for FireFox seems to be much more complex since FireFox do not offer anything similar to MSFT's .NET which in its later incarnations must be regarded as quite powerful. http://xmldap.org shows that you can do extensions but also that very few feel that C++ is the way to go except for things like rendering engines and similar. IMO, Mozilla should consider upgrading the java interfaces so that FireFox becomes comparable to IE + .NET. This is of course not at all limited to security extensions! Google's Android shows a nifty integration of java and browser: http://davanum.wordpress.com/2007/11/21/twitter-client-for-android-how-to-make-xml-over-http-calls/ Sincerely Anders Rundgren _______________________________________________ dev-tech-crypto mailing list [email protected] https://lists.mozilla.org/listinfo/dev-tech-crypto
