Google: TLS Origin-Bound Certificates

[Anders Rundgren]

http://balfanz.github.com/tls-obc-spec/draft-balfanz-tls-obc-00.txt

It seems that the Information Card debacle is attracting tons of
wannabe-successors. I note with satisfaction that the majority
of the proposals are not toying with "putting keys in the cloud".

I have limited faith in this particular effort but OTOH since it is Google
it may become popular anyway.

IMO, Origin-Bound Certificates and WebID could do better by avoiding
the user-hostile TLS CCA (Client Certificate Authentication) system.

Anders