{"id":2251,"date":"2022-02-15T18:43:38","date_gmt":"2022-02-16T02:43:38","guid":{"rendered":"https:\/\/self-issued.info\/?p=2251"},"modified":"2022-02-15T18:43:38","modified_gmt":"2022-02-16T02:43:38","slug":"jwk-thumbprint-uri-draft-addressing-working-group-last-call-comments","status":"publish","type":"post","link":"https:\/\/self-issued.info\/?p=2251","title":{"rendered":"JWK Thumbprint URI Draft Addressing Working Group Last Call Comments"},"content":{"rendered":"<p><span class=\"plain\"><img decoding=\"async\" align=\"right\" alt=\"OAuth logo\" src=\"https:\/\/self-issued.info\/images\/oauth_logo_120x120.png\"><\/span><a href=\"https:\/\/twitter.com\/kristinayasuda\">Kristina Yasuda<\/a> and I have published an updated <a href=\"https:\/\/www.ietf.org\/archive\/id\/draft-ietf-oauth-jwk-thumbprint-uri-01.html\">JWK Thumbprint URI<\/a> draft that addresses the OAuth Working Group Last Call (WGLC) comments received.  Changes made were:<\/p>\n<ul>\n<li>Added security considerations about multiple public keys coresponding to the same private key.<\/li>\n<li>Added hash algorithm identifier after the JWK thumbprint URI prefix to make it explicit in a URI which hash algorithm is used.<\/li>\n<li>Added reference to a registry for hash algorithm identifiers.<\/li>\n<li>Added SHA-256 as a mandatory to implement hash algorithm to promote interoperability.<\/li>\n<li>Acknowledged WGLC reviewers.<\/li>\n<\/ul>\n<p>The specification is available at:<\/p>\n<ul>\n<li><a href=\"https:\/\/www.ietf.org\/archive\/id\/draft-ietf-oauth-jwk-thumbprint-uri-01.html\">https:\/\/www.ietf.org\/archive\/id\/draft-ietf-oauth-jwk-thumbprint-uri-01.html<\/a><\/li>\n<\/ul>\n","protected":false},"excerpt":{"rendered":"<p>Kristina Yasuda and I have published an updated JWK Thumbprint URI draft that addresses the OAuth Working Group Last Call (WGLC) comments received. Changes made were: Added security considerations about multiple public keys coresponding to the same private key. Added hash algorithm identifier after the JWK thumbprint URI prefix to make it explicit in a [&hellip;]<\/p>\n","protected":false},"author":4,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[28,32,26,14,25],"tags":[],"class_list":["post-2251","post","type-post","status-publish","format-standard","hentry","category-cryptography","category-ietf","category-oauth","category-openid","category-specifications"],"_links":{"self":[{"href":"https:\/\/self-issued.info\/index.php?rest_route=\/wp\/v2\/posts\/2251","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/self-issued.info\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/self-issued.info\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/self-issued.info\/index.php?rest_route=\/wp\/v2\/users\/4"}],"replies":[{"embeddable":true,"href":"https:\/\/self-issued.info\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=2251"}],"version-history":[{"count":1,"href":"https:\/\/self-issued.info\/index.php?rest_route=\/wp\/v2\/posts\/2251\/revisions"}],"predecessor-version":[{"id":2253,"href":"https:\/\/self-issued.info\/index.php?rest_route=\/wp\/v2\/posts\/2251\/revisions\/2253"}],"wp:attachment":[{"href":"https:\/\/self-issued.info\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=2251"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/self-issued.info\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=2251"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/self-issued.info\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=2251"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}