For more than three years I’ve been managing certificate-based digital signature applications.
One of the main source of pain always was and is generating the signature on the user browser. As it needs access to the user’s keystore, the browser alone didn’t have access to it, and was needed some kind of component (either ActiveX, usually a Java applet). The deployment of the component and the debugging of different OS/browser/Java version configurations tends to be time consuming.
I even was trying to create my own version of component to help stop reinventing the wheel.
For all the time lost, the existence of a group in the W3C to incorporate crypto to the browser is GREAT NEWS.
First published here