{"id":2442,"date":"2023-10-24T20:59:32","date_gmt":"2023-10-25T03:59:32","guid":{"rendered":"https:\/\/self-issued.info\/?p=2442"},"modified":"2023-10-24T21:35:19","modified_gmt":"2023-10-25T04:35:19","slug":"cbor-web-token-cwt-claims-in-cose-headers-draft-addressing-ietf-last-call-comments","status":"publish","type":"post","link":"https:\/\/self-issued.info\/?p=2442","title":{"rendered":"CBOR Web Token (CWT) Claims in COSE Headers Draft Addressing IETF Last Call Comments"},"content":{"rendered":"<p><span class=\"plain\"><img decoding=\"async\" align=\"right\" src=\"https:\/\/self-issued.info\/images\/ietf-logo.png\" alt=\"IETF logo\"><\/span><a href=\"https:\/\/twitter.com\/tplooker\">Tobias Looker<\/a> and I have published an updated <a href=\"https:\/\/www.ietf.org\/archive\/id\/draft-ietf-cose-cwt-claims-in-headers-07.html\">CBOR Web Token (CWT) Claims in COSE Headers<\/a> specification that addresses the IETF Last Call (WGLC) comments received.  Changes made were:<\/p>\n<ul>\n<li>Added Privacy Consideration about unencrypted claims in header parameters.<\/li>\n<li>Added Security Consideration about detached content.<\/li>\n<li>Added Security Consideration about claims that are present both in the payload and the header of a CWT.<\/li>\n<li>Changed requested IANA COSE Header Parameter assignment number from 13 to 15 due to subsequent assignments of 13 and 14.<\/li>\n<li>Acknowledged last call reviewers.<\/li>\n<\/ul>\n<p>The specification is available at:<\/p>\n<ul>\n<li><a href=\"https:\/\/www.ietf.org\/archive\/id\/draft-ietf-cose-cwt-claims-in-headers-07.html\">https:\/\/www.ietf.org\/archive\/id\/draft-ietf-cose-cwt-claims-in-headers-07.html<\/a><\/li>\n<\/ul>\n<p>The specification is scheduled for the IESG telechat on November 30, 2023.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Tobias Looker and I have published an updated CBOR Web Token (CWT) Claims in COSE Headers specification that addresses the IETF Last Call (WGLC) comments received. Changes made were: Added Privacy Consideration about unencrypted claims in header parameters. Added Security Consideration about detached content. Added Security Consideration about claims that are present both in the [&hellip;]<\/p>\n","protected":false},"author":4,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[29,8,32,25],"tags":[],"class_list":["post-2442","post","type-post","status-publish","format-standard","hentry","category-cbor","category-claims","category-ietf","category-specifications"],"_links":{"self":[{"href":"https:\/\/self-issued.info\/index.php?rest_route=\/wp\/v2\/posts\/2442","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/self-issued.info\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/self-issued.info\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/self-issued.info\/index.php?rest_route=\/wp\/v2\/users\/4"}],"replies":[{"embeddable":true,"href":"https:\/\/self-issued.info\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=2442"}],"version-history":[{"count":2,"href":"https:\/\/self-issued.info\/index.php?rest_route=\/wp\/v2\/posts\/2442\/revisions"}],"predecessor-version":[{"id":2446,"href":"https:\/\/self-issued.info\/index.php?rest_route=\/wp\/v2\/posts\/2442\/revisions\/2446"}],"wp:attachment":[{"href":"https:\/\/self-issued.info\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=2442"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/self-issued.info\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=2442"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/self-issued.info\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=2442"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}