Although the web browser has become the primary vehicle for most users for interacting with the Internet, there is still
a considerable lack of generally supported standards for security-related operations such as digital signatures and
on-line distribution of authentication/signature keys. WebPKI.org aims to change this.
How? That's indeed a very good question! To not get caught in endless standardization processes, it seems that providing open specifications and free implementations (including Open Source) and only IF AND WHEN the result turns out well, continue to the next step (formal standardization) could be a workable scheme.
Naturally, tracking the needs of the [presumed] user community is an important aspect that you should always be aware of but the method above doesn't preclude that more than a "real" standardization effort does. .
Authentication Token for the Web
"WebToken" Documents + Code
WASP - Signing Data in Browser Sessions
The entire document set
Historic: KeyGen2 - "Universal Provisioning"
2008 Emulator "snapshot"