27471 – Provide even more informative text over key wrapping?

This is an archived snapshot of W3C's public bugzilla bug tracker, decommissioned in April 2019. Please see the home page for more details.

Bug 27471 - Provide even more informative text over key wrapping?

Summary: Provide even more informative text over key wrapping?

Status:	RESOLVED MOVED

Alias:	None

Product:	Web Cryptography
Classification:	Unclassified
Component:	Web Cryptography API Document (show other bugs)
Version:	unspecified
Hardware:	PC Linux

Importance:	P2 normal
Target Milestone:	---
Assignee:	Ryan Sleevi
QA Contact:

URL:
Whiteboard:
Keywords:

Depends on:
Blocks:

Reported:	2014-11-30 21:11 UTC by Harry Halpin
Modified:	2016-05-23 23:44 UTC (History)
CC List:	2 users (show)

See Also:

Attachments

Description Harry Halpin 2014-11-30 21:11:02 UTC

Just noting that I removed the following pre-CR from Section 14, as we have I believe resolved that we cannot address execution environment level issues in this spec after very long debate. That being said, informative text that clarifies that unwrapping unextractable trees are hard to guarantee without special treatment that is not to be normatively expected from the text (but could be provided by implementations in theory) might be useful. I also removed the reference from the example. 

Or we could just keep the remark deleted. 

REMOVED: 

Editorial note:

ISSUE-35:
    
              The specification for wrapKey/unwrapKey does not specify how authors that do not trust  the execution environment may indicate required attributes for keys that are unwrapped. An example is unwrapping a key with a non-extractable key, marking  the newly unwrapped key as non extractable, and then further indicating that all keys unwrapped with the newly unwrapped key are also non-ex

Comment 1 Mark Watson 2016-05-23 23:44:31 UTC

Moved to https://github.com/w3c/webcrypto/issues/40