2009 Preliminary Feature List

From RuntimeWiki

Jump to: navigation, search

Here is a list of candidate features for inclusion in the 2009 browser wishlist. For the time being, please keep the descriptions on this page as brief as possible. Feel free to include links to wiki pages that provide additional detail. Once the 2009 browser wishlist initiative ramps up, we'll work towards better organization and in-depth descriptions of the features on the list:

Security

  • Single signon - Cross-browser implementation of a mechanism for secure user login and identification, similar to what Microsoft has with CardSpace.
    • HTTP Digest Authentication (v2) - Eliminating plain text logins, possibly by leveraging the existing HTTP Digest Authentication which is long overdue for modernization, both in the cryptology used (only md5 currently), full nonce support (spotty browser support), auth-int support (only Opera so far) to ensure form/content integrity, proper sign out/session clearing (all browsers mess this up currently), and page/ajax integration. This is not an alternative to SSL, but rather an alternative to plaintext logins when SSL is not available or possible like on most blogs, sites, forums and even this very site, the new/improved implementation should require the passwords to be stored hashed with a salt on the server to minimize damage due to hacking. Would bring benefits for OpenID and HTML5 as well.

Development

  • Emulators - For each browser release, the HTML/Ajax engines should be available to developers to support automated testing without requiring installation of multiple operating systems (such as using Parallels). This requirement has even more urgency for mobile browsers, where developers cannot purchase and test against all of the mobile phones that exist in the market.
Retrieved from "http://www.openajax.org/runtime/wiki/2009_Preliminary_Feature_List"