Endorse Brand - free Hardware Security Web + Hardware Security is - - PowerPoint PPT Presentation

endorse brand free hardware security web hardware
SMART_READER_LITE
LIVE PREVIEW

Endorse Brand - free Hardware Security Web + Hardware Security is - - PowerPoint PPT Presentation

Nov 30, 2022 352 likes •523 views

Why W3C needs to Remain Neutral and Endorse Brand - free Hardware Security Web + Hardware Security is much, much more than just: Image source: halfelf.org It is about decentralizing ID validation and key storage (my religion)

slide-1
SLIDE 1

Why W3C needs to Remain Neutral and Endorse ‘Brand-free’ Hardware Security

slide-2
SLIDE 2

Image source: halfelf.org

Web + Hardware Security is much, much more than just:

slide-3
SLIDE 3

It is about decentralizing ID validation and key storage… Smart Card Chips: Proven Scalable Ultra low cost Form factor agnostic (“my religion”)

slide-4
SLIDE 4

Instead smart cards are rooted in well-defined standards and evolve through various industry bodies to keeps pace with the practice of Moore’s Law. Maturity = Significant investment in certification!

Myth 1:

slide-5
SLIDE 5

Certified Smart card chips must follow various rigorous international interoperable standards (see position paper submitted by Smart Card Alliance). These erroneous opinions on smart cards being proprietary must have come about because many current integrations to web applications have been implemented in the absence of web standards, thereby further supporting the need for such standards.

Myth 2:

slide-6
SLIDE 6

Fact:

slide-7
SLIDE 7

2nd factor experience Vs. But even 2nd factor is that is all we wanted…there is no reason For W3C to only support FIDO…

slide-8
SLIDE 8

PKCS15 lite applet PKCS11 lite Daemon NSS

Smart Card Hardware Browser There is already a solution without the trademark!

slide-9
SLIDE 9

Install OpenSC & middleware Configure Firefox to Add Security Device

slide-10
SLIDE 10

When hardware is detected: Decentralized validation and client certificate When hardware is not detected: Error!

slide-11
SLIDE 11

Works on both Mac and PC

slide-12
SLIDE 12

PKCS15 lite applet PKCS11 lite Daemon NSS

Smart Card Hardware Browser Form factor and interface agnostic…

slide-13
SLIDE 13

So what?

slide-14
SLIDE 14

Smart card community will benefit if W3C enables technology on browsers to:

  • Configuration management of Smart Card Hardware Tokens
  • Smart Card-based H/W Token discovery and registration
  • Select a specific Smart Card-based H/W Token

(“my religion”)

slide-15
SLIDE 15

Entire community will benefit if W3C enables technology on browsers to:

  • Configuration management of Smart Card Hardware Tokens
  • Smart Card-based H/W Token discovery and registration
  • Select a specific Smart Card-based H/W Token
  • Be neutral to the browser-server protocol and use cases
  • Be neutral and ‘brand’ free for hardware and protocol

Separation of “church” and “state”

    

slide-16
SLIDE 16

Browsers

Browser “Box” (W3C)

Box1 (WebRTC) Box2 (PKCS) Box3 (FIDO) Box4…

W3C Not W3C “Church” “State” Common API Extensions