The Web Cryptography Working Group will develop a Recommendation-track document that defines an API that lets developers implement secure application protocols on the level of Web applications, including message confidentiality and authentication services, by exposing trusted cryptographic primitives from the browser. This will promote higher security insofar as Web application developers will no longer have to create their own or use untrusted third-party libraries for cryptographic primitives.

Web Cryptography W3C Standards and Notes

• First Public Working Draft: Web Cryptography API
• Editor's Draft: Web Cryptography API
  Bugzilla for the Web Cryptography API
• Web Cryptography Use-Cases: Editor's Draft: Use Cases (prior wiki)
  Bugzilla for the Web Cryptography Use-Cases
• WebCrypto Key Discovery: Editor's Draft: Key Discovery

Charter, Meeting Records, and History

The Web Cryptography Working Group Charter shows what the W3C has asked this working group to do.

• Teleconferences: 7 May, Public introduction, 14 May minutes, 21 May minutes
  4 June minutes, 11 June minutes, 18 June minutes,
  02 July minutes, 09 July minutes, 16 July minutes,
• Face-to-Face: July 24-25 (location Mountain View, USA): Agenda, logistics: Draft minutes: 24 July minutes, 25 July minutes
• 06 August minutes, 13 August minutes, 20 August minutes, 27 August minutes
• 4 September minutes, 10 September minutes, 17 September minutes
• 1 October minutes, 8 October minutes, 15 October minutes, 22 October minutes
• TPAC (Oct. 29-Nov. 2, Lyon, France; meeting day Nov. 1-2): Nov. 1 minutes, Nov. 2 minutes
• 12 November minutes, 26 November minutes, 10 December minutes, 17 December minutes

Group Membership and Joining

We encourage new members of the group to introduce themselves by email. The full Web Cryptography WG participants list is available to W3C members.

If you want to join the group:

• If you're affiliated with a W3C member organization
  1. Use the form for getting a W3C account
  2. Have your AC representative nominate you using the form for joining this WG.
• Otherwise, contact the chair and team contact about invited expert status. That will involve getting an account and filling out a form for copyright, patent, etc. policies.

Schedule of Deliverables

• April 2012: Group Formation
• June 2012: Expected first public Working Draft of Web Cryptography API spec
• February 2013: Expected Last Call
• August 2013: Expected Candidate Recommendation
• November 2013: Expected Public Recommendation
• March 2014: Expected Recommendation

The working group schedule is an estimate based on the schedule in the charter.

Also of Interest

• The IETF JOSE (Javascript Object Signing and Encryption) Working Group
• The IETF RTCWeb Working Group
• The W3C WebRTC Working Group
• The W3C Web Applications Security Working Group
• The W3C HTML Working Group
• The W3C WebApps Working Group
• DomCrypt in Mozilla. Also note that Chrome supports some of DomCrypt.
• Microsoft Cryptographic API
• Microsoft Next-Generation Cryptographic API
• The Stanford Javascript Crypto library

These are documents produced outside the W3C Web Cryptography Working Group that may be of interest to people interested in Working Group. Please alert the Chair of the Working Group if you know of any material that you think merits inclusion.