- From: Tim Holborn <timothy.holborn@gmail.com>
- Date: Sat, 3 May 2014 18:24:01 +1000
- To: Anders Rundgren <anders.rundgren.net@gmail.com>
- Cc: Andrei Sambra <andrei.sambra@gmail.com>, public-webid <public-webid@w3.org>, "public-rww@w3.org" <public-rww@w3.org>
WebID TLS certs may need browser support in future, but, i�m betting if the method works, it�ll likely get that browser support (one way or another). It does not provide an entire solution however, it is simply a constituent of a solution IMHO. If you�d done enough testing, you�d have too many WebID Certificates. Right-up until the point, where you set-up your own cert; manage it effectively, which in-turn means you only need one Cert� I�ve still not sorted that out yet. i think perhaps a back-up (or export) button on RWW.io might be a good idea, somewhere in the todo list. timh. On 3 May 2014, at 6:08 pm, Anders Rundgren <anders.rundgren.net@gmail.com> wrote: > Now I have tried it out as well including the micro-blogging. > It was cool with one exception, TLS CCA (Client Certificate Authentication) > > Logging in to http://cimba.co required me to select certificate twice and > from a pretty long list of non-WebID certificates. > > Unless W3C gets their act together and creates a web-compliant replacement > for TLS CCA, WebID won't ever catch on. I have no faith in W3C for taking > any action on this since not even the requirements have ever been discussed. > TLS is a sacred cow. > > Fortunately Google hadn't any problems slaughtering this poor creature > when they started their U2F project which have created a hype I haven't > seen before during my 15Y+ in the "id-business". It didn't take an > eternity either. > > Anders > grumpy old fart with a mission > >
Received on Saturday, 3 May 2014 08:25:19 UTC