http://lists.w3.org/Archives/Public/public-html/2009Aug/0389.html
However, that doesn't make Microsoft's solution ideal either because it also fails to address provisioning in a way that is even remotely comparable to what current card management software offers. IETF's DSKPP/PSKC which currently is in WGLC can unlike the HTML5 and MSFT solutions set PIN-codes on tokens which I consider a minimum requirement. Unfortunately DSKPP/PSKC has no ties to PKI or browsers. This total confusion seems like an ideal reason for me to continue working on the universal browser-based key-provisioning system. Although it is a very slow process (it's not my day-job), it is probably still much faster than the alternatives which seems to be stuck in a form they got a decade ago. Anders http://keycenter.webpki.org -- dev-tech-crypto mailing list dev-tech-crypto@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-tech-crypto
