Services/KeyExchange: Difference between revisions
< Services
Jump to navigation
Jump to search
(Created page with "= Overview = Explore using J-PAKE to securely pass credentials to another device. = Engineers Involved = * Tarek (server) * Philipp (FxSync) * Stefan (FxHome) = User Requirem...") |
|||
| Line 2: | Line 2: | ||
Explore using J-PAKE to securely pass credentials to another device. | Explore using J-PAKE to securely pass credentials to another device. | ||
Tracking bug is {{bug|601644}}. | |||
= Engineers Involved = | = Engineers Involved = | ||
Revision as of 19:21, 4 October 2010
Overview
Explore using J-PAKE to securely pass credentials to another device.
Tracking bug is bug 601644.
Engineers Involved
- Tarek (server)
- Philipp (FxSync)
- Stefan (FxHome)
User Requirements
- Setting up a new mobile device should only involve entering a short code on the desktop device
- Secondary request, not a hard requirement, is that if the user has a mobile device, and is setting up a desktop device, that the flow is similar and still involves entering the key on the desktop
Desired User Flow
- User chooses "quick setup" on new device
- Device displays a setup key that contains both the initial secret and a channel ID
- On a device that is authenticated, user chooses "add another device" and is prompted for that key
- The two devices exchange messages to build the secure tunnel
- The already-authenticated device passes all credentials (username/password/passphrase) to the new device
- New device completes setup and starts syncing