About 's future...

Hi all As previously raised on this list, there's a open wardiscussion about removing [1] Some people, like Sir Tim Berners-Lee doesn't seem to agree with that, hence another thread is taking place at [2] For Google, it seems the decision has been made, nothing is going to change, and could

Re: About 's future...

On Thu, Sep 17, 2015 at 8:59 PM, Rob Stradling wrote: > The existence of this bug... > > https://bugzilla.mozilla.org/show_bug.cgi?id=1191414 > "gather telemetry on usage of " > > ...would seem to suggest that Mozilla "haven't decided anything yet". > IMHO that's not a

Re: Smart Card and WebCrypto (Re: On the future of and application/x-x509-*-cert MIME handling)

On Sun, Aug 30, 2015 at 12:10 PM, Anne van Kesteren wrote: > it seems they're not using either, so that solution was probably > not sufficient either way. > At least in Spain, is the only way to generate a key pair inside smartcard (using Firefox) before sending PKCS#10 to

Re: On the future of keygen and application/x-x509-*-cert MIME handling

So...may I know if a decision was made? keygen element is marked as deprecated on MDN, and as stated by rsleevi, Chrome seems will drop it. Will Mozilla do the same? Do you have a roadmap/date for such change? It's going to be supported by now until next call? Please, consider we are *that

Re: On the future of keygen and application/x-x509-*-cert MIME handling

Hi In our case, we use keygen to generate a keypair on our SSCD (smartcard) using Firefox, cause -with the PKCS#11 module configured-, it asks where to store the keys, so the user select CARD. Using Webcrypto or other JS stuff I wont be able to populate my smartcards, so -IMHO- you should keep

Re: Please help test the new NPAPI plugin sandbox on Windows

Do any of these affect NPAPI Java behaviour somehow? (ie: can it break applet running or privileges?) Thanks. On Sat, Jan 24, 2015 at 9:55 AM, Chris Peterson cpeter...@mozilla.com wrote: Bob Owen just landed a basic sandbox for Firefox's NPAPI plugin container (bug 1123245) in Nightly 38.

Re: Please help test the new NPAPI plugin sandbox on Windows

didn't mention the default pref because we wanted people to focus their testing on Flash, but if you find any Java crashes or bugs with the default pref, please let us know! thanks, chris On 1/26/15 12:35 AM, helpcrypto helpcrypto wrote: Do any of these affect NPAPI Java behaviour somehow

Re: JS-Ctype IRC Room

Is there a maillist for jsctypes? Wouldn't that be better than an irc channel? On Tue, Jan 20, 2015 at 5:39 AM, Philip Chee philip.c...@gmail.com wrote: On 20/01/2015 07:21, noitid...@gmail.com wrote: New irc room we're trying to establish. #jsctypes

Re: WebCrypto for http:// origins

On Thu, Sep 11, 2014 at 6:58 PM, Adam Roach a...@mozilla.com wrote: When you force people into an all or nothing situation regarding security, Nature finds his own way: As nothing was invented for doing Javscript Cryptography, someone started using Java Applets. Java applets are much more

Re: Intent to ship: WebCrypto API

I'll love to know if Mozilla/Firefox is going to provide something (even out-of-standard) to make possible using PKCS#11/NSS with Webcrypto. This will fill the gap that currently exist with hardware token support (which, is going to be discussed nexr 10th September) Regards.

Re: Plug-in feature not available in the web platform. Alternatives?

Sorry to appear so late, busy weeks!. On Mon, Dec 2, 2013 at 9:27 AM, fma spew fmas...@gmail.com wrote: 1) WebCrypto does not initially plan support for making end-user certificates available. W3C WG divided this on 2 specs: Webcrypto and Key Discovery. Webcrypto is about operations like

Re: Plug-in feature not available in the web platform. Alternatives?

Hi. My two cents. On Sat, Nov 9, 2013 at 5:13 PM, Benjamin Smedberg benja...@smedbergs.uswrote: On 11/8/2013 4:33 AM, fma spew wrote: We have a npapi-npruntime plug-in that access the Windows certificate store via CAPI to provide the end-user with its personal certificates to perform

Re: Supporting the Windows Certificate Store

Just for confirmation: Is Mozilla point to implement MSCAPI access trough a PKCS#11 module? (http://mxr.mozilla.org/security/source/security/nss/lib/ckfw/capi/) or Is mozilla point to integrate with MSCAPI (transparently)? Just to know which answer give next time this topic raises. On Wed,

Re: How to automatically register a PKCS#11 module into firefox?

Have you considered browser's addmodule js function? https://developer.mozilla.org/en/docs/JavaScript_crypto#Loading_PKCS_.2311_modules On Mon, Feb 25, 2013 at 12:26 PM, m.sal...@gmail.com wrote: Hi, I have a pkcs#11 dll library and want it to register it in the firefox browser using a MSI

Re: Let's never, ever, shut down NSS -- even in debug builds

After reading bsmith message i have two questions coming to my mind... In normal usage, cert8/key3/secmod (some may apply) are rewrited on firefox close. Is this really necessary? But, AFAICT, it is OK to do I/O during shutdown as long as you don't care whether you get interrupted or not.