Jon Choukroun

icon indicating a website link jonchoukroun.com

icon company Apple icon location San Diego icon location Software Engineer, iCloud Mail UX Engineering @apple

Results 7 comments of Jon Choukroun

[Remote CryptoKeys] Relationship to WebAuthn PRF extension?

@timcappalli is correct, our proposal intends to support long-lived keys. As for the storage mechanism, our thinking has been that the API should be agnostic on where the key material...

[Remote CryptoKeys] Various questions and feedback

Thanks for the feedback @twiss and @estark37. - The `getRemoteKey` method would be required to get the `CryptoKey` handle. This means the calling web app will know quickly whether it...

[Remote CryptoKeys] Option for key access to be tied to browser storage policy?

To clarify, the intent of this proposal is to support long-lived key use, across multiple browsers and user devices. For example, I can create an encryption key pair on my...

[Remote CryptoKeys] Option for key access to be tied to browser storage policy?

@estark37 I think you're right. We've been thinking of these keys as origin-bound, in the sense that when a web app calls `getRemoteKey()` the browser would pass along the web...

[Remote CryptoKeys] Applicability to payments / anti-fraud use cases

@RByers that's an interesting use case I'm not familiar with. You're correct, the intent of this proposal covers use cases where keys should be syncable across devices. For example, I...

[Remote CryptoKeys] “remote” CryptoKeys should be renamed, suggest “syncable”

We agree that ”remote“ may not be the correct term for these keys. However, it seems that it should be observable from the browser’s perspective that the key material exists...

[Remote CryptoKeys] Problem statement explains why some alternatives are bad, but doesn’t explain why non-extractable keys are not sufficient

That's correct @othermaciej , by "in the client" we mean in webpage code. We agree the explainer can be clearer on why the existing `CryptoKey` properties don't cover our use...