JSON Object Signing and Encryption (JOSE) -14 drafts have been published that incorporate minor updates requested by the working group since the last working group call. The primary change was adding algorithm identifiers for AES algorithms using 192 bit keys; supporting these algorithms is optional. The only breaking changes were to the password-based encryption algorithm parameter representation. This version adds an example ECDH-ES Key Agreement computation.
The JSON Web Token (JWT) -11 draft adds a Nested JWT example — in which the claims are first signed, and then encrypted.
The drafts are available at:
- http://tools.ietf.org/html/draft-ietf-jose-json-web-signature-14
- http://tools.ietf.org/html/draft-ietf-jose-json-web-encryption-14
- http://tools.ietf.org/html/draft-ietf-jose-json-web-key-14
- http://tools.ietf.org/html/draft-ietf-jose-json-web-algorithms-14
- http://tools.ietf.org/html/draft-ietf-oauth-json-web-token-11
HTML formatted versions are also available at:
- https://self-issued.info/docs/draft-ietf-jose-json-web-signature-14.html
- https://self-issued.info/docs/draft-ietf-jose-json-web-encryption-14.html
- https://self-issued.info/docs/draft-ietf-jose-json-web-key-14.html
- https://self-issued.info/docs/draft-ietf-jose-json-web-algorithms-14.html
- https://self-issued.info/docs/draft-ietf-oauth-json-web-token-11.html
Peter Bernhardt
Peter Bernhardt
Peter Bernhardt
Peter Bernhardt