Addressing the "Web Security Standards Deficit"

Although the web browser has become the primary vehicle for most users for interacting with the Internet, there is still a considerable lack of generally supported standards for security-related operations such as digital signatures and on-line distribution of authentication/signature keys.  WebPKI.org aims to change this.
 
How?  That's indeed a very good question!  To not get caught in endless standardization processes, it seems that providing open specifications and free implementations (including Open Source) and only IF AND WHEN the result turns out well, continue to the next step (formal standardization) could be a workable scheme.
 
Naturally, tracking the needs of the [presumed] user community is an important aspect that you should always be aware of but the method above doesn't preclude that more than a "real" standardization effort does. .

Authentication Token for the Web
 
"WebToken" Documents + Code

WASP - Signing Data in Browser Sessions
 
Tutorial/Introduction
FAQ
The entire document set
 

Historic: KeyGen2 - "Universal Provisioning"
 
Vision Paper
2008 Emulator "snapshot"
Primary Contact
 
anders.rundgren.net@gmail.com
 
LinkedIn profile