[1] This agnostic API would perform basic cryptographic operations, such as hashing, signature generation and verification and encryption as well as decryption from within a web application.
This agnostic API would utilize JavaScript to perform operations that would increase the security of data exchange within web applications.
This is because of the awareness that cryptographic implementations will vary amongst conforming user agents because of government regulations, local policies, security practices and intellectual property concerns.
[1] Today multi-factor authentication is considered one of the most reliable methods for verifying the identity of a user of a web application, such as online banking.
[1][2] The API can be used to protect sensitive or confidential documents from unauthorized viewing from within a web application, even if they have been previously securely received.
[2] The Web Cryptography API can enhance the security of messaging for use in off-the-record (OTR) and other types of message-signing schemes through the use of key agreement.
The W3C recommends that vendors avoid using vendor-specific proprietary extensions with specifications for the Web Cryptography API.