info
Google Groups no longer supports new Usenet posts or subscriptions. Historical content remains viewable.
Dismiss
Secure Key Store with WebExtensions (e.g. NSS)
22 views
Skip to first unread message
ta...@cloudmask.com
Jun 14, 2016, 8:18:33 AM6/14/16
to
Currently we use NSS, through c-types, to access secure key store and perform crypto functions, which protected access to the actual raw keys. This approach is commonly used to meet strict security requirements and allow for storing keys in hardware tokens, smart cards, etc.
Is there an equivalent, higher level-api, which can be used when migrating to Web Extensions? Chrome extension API does not. Instead, users would have to install a separate native app and create a messaging channel to it, which is awkward to distribute and manage, and arguably less secure.
The ability for Firefox extensions to perform secure key crypto function is a compelling security feature. Hope there are plans to keep them.
Is there an equivalent, higher level-api, which can be used when migrating to Web Extensions? Chrome extension API does not. Instead, users would have to install a separate native app and create a messaging channel to it, which is awkward to distribute and manage, and arguably less secure.
The ability for Firefox extensions to perform secure key crypto function is a compelling security feature. Hope there are plans to keep them.
r.chrz...@medlan.pl
Oct 5, 2016, 9:22:38 AM10/5/16
to
0 new messages