Oracle has many enterprise and government customers. They are interested
in the use of stronger authentication methods (beyond passwords) for
applications where users utilize varied (multi-vendor) devices such as
phones, tablets, laptops. These devices may be owned by the user or
third-parties (enterprises, family members, public kiosks).
The Web Crypto API enables a part of this ecosystem but we are
interested in the creation of broader architectural proposals and
standards to enable stronger authentication.