CASA Agenda 19 Oct - Browser Sec call

# CASA Agenda 19 Oct - Browser Sec call ## PRs to refine/move to close - n/a ## Ongoing projects/topics - Brief Discussion for context: History of [recently deprecated](https://medium.com/metamask/metamask-api-method-deprecation-2b0564a84686) MM [Enc/Dec API](https://docs.metamask.io/guide/rpc-api.html#unrestricted-methods) based on [EIP-1098]() (further receipts: [EIP magicians thread] | [github PR history](https://github.com/ethereum/EIPs/pull/1098) | [2019 rust crate](https://crates.io/crates/eip_1024) | [gitcoin grant](https://github.com/openethereum/parity-ethereum/issues/9893#issuecomment-439436999) ) - Brief discussion as possible input doc/starting point for a CAIP: the new EIP hoping to supercede 1098, [5630](https://eips.ethereum.org/EIPS/eip-5630) (further receipts: [EIP magicians thread](https://ethereum-magicians.org/t/eip-5630-encryption-and-decryption/10761/8) | [github PR history]() ) - Juan highly recommends everyone read Kyle and Authors' exchange in the Magicians thread above - How to namespace multiple enc/dec keys? - `We set SharedInfo to be empty here` ??? - Kyle: "[ key reuse ] could easily be solved with just using a different salt with the KDF function" - is the "version string" enough of an extension mechanism to work on other VMs with radically different key/curve options available, much less different use-cases requiring different discovery, privacy, and/or rotation models? - SESSIONS and handshakes - MM's proposal to [make sessions more explicit](https://github.com/ChainAgnostic/CAIPs/issues/141) in CAIP 25 - but should sessions be declared/authorized as part of call/response or otherwise? awkward separation of concerns given the authZ and session management implied by CACAO/SIWX flow... what's the upgrade path there? - need a separate CAIP for expressing these as a data model if anything other than default? - who sets default, dapp, wallet, browser, etc? - Domain-binding issues around SIWE/SIWX (as time allows) - wallet namespace idea (as time allows) ## Next Steps - Are we ready for a CAIP about enc/dec? - draft CAIP pre-circulated on CASA discord or straight to github?