El 09/10/13 23:36, Chris Karlof escribió: > > There are several motivations for this, but one is that we are > designing services that store encrypted user data by default. The > default option is that the encryption key will be derived from the > user's password. If a user doesn't have a password with us, managing > the encryption key is trickier. We have something called "pairing" in > current Firefox Sync, but it has several UI issues with its current > implementation, and it's not clear how to fix them. Another option is > for us to store the encryption key, which has privacy concerns. > > This is a tricky problem with lots of tradeoffs, and we're continuing > to work towards a solution that's best for our users. I get the tricky point of needing something to encrypt data, at the end a password/passphrase has to be provided to do the process.
Persona can still be used to verify the email provided and then ask for a passphrase to encrypt data, so work flow could be something like: * Click on Log in to Firefox Accounts. * Persona dialog ? Verification ? OK. * Enter the passprashe to encrypt your data. * Success. Regards. -- Rubén Martín [Nukeador] Mozilla Reps Mentor http://www.mozilla-hispano.org http://twitter.com/mozilla_hispano http://facebook.com/mozillahispano
signature.asc
Description: OpenPGP digital signature
_______________________________________________ Sync-dev mailing list [email protected] https://mail.mozilla.org/listinfo/sync-dev
