This use case is similar to the Protected Document Exchange use case, with viewership of the document limited to the user themself.A web application may wish to accept electronic signatures on documents, in lieu of requiring physical signatures.A web application may wish to permit users to protect the confidentiality of data and documents stored with remote service providers prior to uploading.
Ongoing discussion will be on the [email protected] list (archives).
This document has been reviewed by W3C Members, by software developers, and by other W3C groups and interested parties, and is endorsed by the Director as a W3C Recommendation.
This specification describes a Java Script API for performing basic cryptographic operations in web applications, such as hashing, signature generation and verification, and encryption and decryption.
Additionally, it describes an API for applications to generate and/or manage the keying material necessary to perform these operations.
A web application may wish to cache data locally, while ensuring that this data cannot be modified in an offline attack.