> I think we all mean "key handles" instead of "plaintext key material" > but the problem is the same - keys get exposed "naked" and can be > (ab)used for whatever.
I mean, apart from malicious sign operations, i dont see any risk on javascript "seeing" a key handle. Is there any? If the only risk are malicious sign request...I agree something like "you are going to sign..." and requesting a PIN is not enough to prevent users clicking without read, but isnt crypt.signText actually doing the same? -- dev-tech-crypto mailing list dev-tech-crypto@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-tech-crypto
