Confirm
471
edits
Changes
m
* finalize how getToken2() declares whether a signToken or a resetToken is desired
* provide test vectors for decrypting a resetToken
→PiCL Key Server / IdP Protocol
NOTE: This specification is under active development (11-Jul-2013). Several pieces are not yet complete. If you write any code based on this design, keep a close eye on this page and/or contact me (warner) on the #picl IRC channel to learn about changes. Eventually this will be nailed down and should serve as a stable spec for the PICL keyserver/IdP protocol.
The server is being developed in https://github.com/mozilla/picl-idp . This repo currently include includes a demonstration client (node.js CLI).
Remaining TODO items:
* decide on client-side key-stretching parameters
* finalize SRP questions (definition of M1, generation of a/b)
* finalize proof-of-work/DoS-prevention details
* decide how to rate-limit account-creation calls* confirm this is actually implementable inside Firefox (especially w.r.t. NSSand Android/Java crypto)
= Creating The Account =
