This is an archived snapshot of W3C's public bugzilla bug tracker, decommissioned in April 2019. Please see the home page for more details.
Section 6 was largely drafted prior to the extraction of explicit key storage, and during the discussions of Named Key Discovery ( http://www.w3.org/TR/webcrypto-key-discovery/ ) This was raised as a concern during the W3C TAG review ( https://github.com/w3ctag/spec-reviews/issues/3#issuecomment-41521737 ) The security/privacy concerns of the base specification should be updated to reflect the fact that - The core specification does not provide any notion of key storage or persistent key access - There are significant concerns for any specification that does
https://dvcs.w3.org/hg/webcrypto-api/rev/7a79e816e31b