[security-dev] JS libraries for crypto and signatures
Anil.Saldhana at redhat.com
Thu Apr 10 11:00:22 EDT 2014
On 04/10/2014 09:58 PM, Bill Burke wrote:
> On 4/10/2014 10:44 AM, Anil Saldhana wrote:
>> An important topic.
>> Until the W3C Web Cryptographic Group
>> finalizes its standard and we have conforming implementations,
>> the question of trustworthy implementations cannot be really answered.
>> If the JS library is just implementing signature or crypto algorithms
>> and you have tested it, may be you
>> should go for it.
>> The situation is very similar to the following:
>> - JSON processing (Until JSON-P JSR https://jcp.org/en/jsr/detail?id=353
>> was finalized, we could go either with Jackson or other json library)
>> - Captcha libraries (there are many)
>> Your application has to choose one and go forward.
>> On 04/10/2014 09:07 AM, Pedro Igor Silva wrote:
>>> Have you ever looked/used these JS libraries for crypto and signature ?
>>> I did some signatures tests and it seems to work fine. Wondering if someone have used it for real ...
>>> Pedro Igor
More information about the security-dev