First Draft Of Web Cryptography API
Written by Alex Armstrong   
Monday, 17 September 2012

The World Wide Web Consortium (W3C),  the body responsible for web standards, has published a working draft of an API designed to improve the security of web apps.

 

The draft has been authored by security specialists from Mozilla and Google and is a specification for a JavaScript API for performing basic cryptographic operations in web applications, such as hashing, signature generation and verification, and encryption and decryption.

It will therefore enable web applications to check a user's identity in more secure ways than are currently possible between browsers and HTTP servers.

Uses for the API include user or service authentication, document or code signing, and the confidentiality and integrity of communications. You can also use the API to think up ad-hoc applications of cryptography within your own apps.

The W3C Web Cryptography Working Group is looking for feedback on:

 

  • developer convenience for managing keys and algorithms;
  • comments on open issues the WG is currently dealing with, highlighted in this working draft;
  • potential missing functionalities to deploy secure web applications.

 

 

w3clogo

More Information

Web Cryptography API

Related Articles

Modifiable encryption

Public Key Encryption

 

square

 



 

Comments




or email your comment to: comments@i-programmer.info

 

To be informed about new articles on I Programmer, install the I Programmer Toolbar, subscribe to the RSS feed, follow us on, Twitter, Facebook, Google+ or Linkedin,  or sign up for our weekly newsletter.

 

Banner


The Most Important Features To Include In An E-Commerce App
27/11/2020

An e-commerce application serves a clear and simple goal. To make it successful, there are several tips to keep in mind when starting a new project. Learn what they are, and create an effective e-comm [ ... ]



Amazon Luna Goes Live
06/11/2020

Amazon has launched Luna, a cloud gaming service that it says game developers can use to reach multiple endpoints from a single source.


More News

Last Updated ( Monday, 17 September 2012 )