On 2011-06-21 11:18, Konstantin Andreev wrote:
> [combining two cites to save space]
>
> On 21.06.11 00:48, Anders Rundgren wrote:
>>
>> We have both come to the conclusion that Firefox et al sucks since just
>> about all serious users need to deploy plugins in order to use their PKIs.
>
> On 18.06.11 19:59, Anders Rundgren wrote:
>
>> [Subject: Update: Browser Crypto Protocol Invocation]
>>
>> Some three years ago I published a proposal [...] I have revised it to be
>> fully format-neutral.
>> http://webpki.org/papers/web/XMLBrowserExtensionScheme.pdf
>
> Anders, as far as I understand, the two cites above are related.
They sure are!
> Is there anywhere an informal, brief intro into the subject you are
> talking about? I'd like to get some awareness of.
Hi Konstantin,
There is a lot of information on different levels.
Way back I started with digital signature support:
http://webpki.org/papers/wasp/wasp-tutorial.pdf
The last 4 years I have focused on on-line provisioning of credentials
since it is working fairly badly [*] in Firefox which has created a
virtual *industry* supplying proprietary plugins for this purpose.
The page below contains the usual high-level marketing BS but the links in
it point to quite detailed information on how the proposed scheme is designed:
http://webpki.org/auth-token-4-the-cloud.html
The idea is creating a complete technical solution for issuing, managing
and using credentials (PKI, OTP, Information Card, U-Prove etc) over the
internet using a [future] standard browser.
It may be "hubris" but so far I haven't found any showstopping
technical issues at least. "Only" browser integration and market
acceptance remains :-) :-)
Regards,
Anders
*]
- No PIN provisioning
- Unknown smart card support
- No credential management support
- No support for anything but PKI
--
dev-tech-crypto mailing list
[email protected]
https://lists.mozilla.org/listinfo/dev-tech-crypto
