Confirmed users
471
edits
Identity/AttachedServices/KeyServerProtocol: Difference between revisions
Jump to navigation
Jump to search
m
Identity/AttachedServices/KeyServerProtocol (view source)
Revision as of 18:31, 12 July 2013
, 12 July 2013→PiCL Key Server / IdP Protocol
(→Test Vectors: update vectors) |
|||
| Line 3: | Line 3: | ||
NOTE: This specification is under active development (11-Jul-2013). Several pieces are not yet complete. If you write any code based on this design, keep a close eye on this page and/or contact me (warner) on the #picl IRC channel to learn about changes. Eventually this will be nailed down and should serve as a stable spec for the PICL keyserver/IdP protocol. | NOTE: This specification is under active development (11-Jul-2013). Several pieces are not yet complete. If you write any code based on this design, keep a close eye on this page and/or contact me (warner) on the #picl IRC channel to learn about changes. Eventually this will be nailed down and should serve as a stable spec for the PICL keyserver/IdP protocol. | ||
The server is being developed in https://github.com/mozilla/picl-idp . This repo currently | The server is being developed in https://github.com/mozilla/picl-idp . This repo currently includes a demonstration client (node.js CLI). | ||
Remaining TODO items: | Remaining TODO items: | ||
| Line 9: | Line 9: | ||
* decide on client-side key-stretching parameters | * decide on client-side key-stretching parameters | ||
* finalize SRP questions (definition of M1, generation of a/b) | * finalize SRP questions (definition of M1, generation of a/b) | ||
* finalize proof-of-work/DoS-prevention details | * finalize proof-of-work/DoS-prevention details | ||
* confirm this is actually implementable inside Firefox (especially w.r.t. NSS) | * decide how to rate-limit account-creation calls | ||
* confirm this is actually implementable inside Firefox (especially w.r.t. NSS and Android/Java crypto) | |||
= Creating The Account = | = Creating The Account = | ||