{"id":477,"date":"2011-03-25T22:24:39","date_gmt":"2011-03-26T05:24:39","guid":{"rendered":"https:\/\/self-issued.info\/?p=477"},"modified":"2012-09-18T16:02:01","modified_gmt":"2012-09-18T23:02:01","slug":"json-web-token-jwt-and-json-web-signature-jws-now-in-separate-specs","status":"publish","type":"post","link":"https:\/\/self-issued.info\/?p=477","title":{"rendered":"JSON Web Token (JWT) and JSON Web Signature (JWS) now in separate specs"},"content":{"rendered":"<p>As promised, I have split the contents of the JWT spec draft-jones-json-web-token-01 into two simpler specs:<\/p>\n<ul>\n<li><a href=\"https:\/\/self-issued.info\/docs\/draft-jones-json-web-token-02.html\">draft-jones-json-web-token-02<\/a><\/li>\n<li><a href=\"https:\/\/self-issued.info\/docs\/draft-jones-json-web-signature-00.html\">draft-jones-json-web-signature-00<\/a><\/li>\n<\/ul>\n<p>These should have introduced no semantic changes from the previous spec.<\/p>\n<p>I then applied the feedback that I received since JWT -01 and created revised versions of the split specs:<\/p>\n<ul>\n<li><a href=\"https:\/\/self-issued.info\/docs\/draft-jones-json-web-token-03.html\">draft-jones-json-web-token-03<\/a><\/li>\n<li><a href=\"https:\/\/self-issued.info\/docs\/draft-jones-json-web-signature-01.html\">draft-jones-json-web-signature-01<\/a><\/li>\n<\/ul>\n<p>The only breaking change introduced was that x5t (X.509 Certificate Thumbprint) is now a SHA-1 hash of the DER-encoded certificate, rather than a SHA-256 has, as SHA-1 is the prevailing existing practice for certificate thumbprint calculations.  See the Document History sections for details on each change made.<\/p>\n<p>.txt and .xml versions are also available.  I plan to publish these as IETF drafts once the submission window re-opens on Monday.  Feedback welcome!<\/p>\n<p>P.S.  Yes, work on the companion encryption spec is now under way&#8230;<\/p>\n","protected":false},"excerpt":{"rendered":"<p>As promised, I have split the contents of the JWT spec draft-jones-json-web-token-01 into two simpler specs: draft-jones-json-web-token-02 draft-jones-json-web-signature-00 These should have introduced no semantic changes from the previous spec. I then applied the feedback that I received since JWT -01 and created revised versions of the split specs: draft-jones-json-web-token-03 draft-jones-json-web-signature-01 The only breaking change introduced [&hellip;]<\/p>\n","protected":false},"author":4,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[8,28,27,25],"tags":[],"class_list":["post-477","post","type-post","status-publish","format-standard","hentry","category-claims","category-cryptography","category-json","category-specifications"],"_links":{"self":[{"href":"https:\/\/self-issued.info\/index.php?rest_route=\/wp\/v2\/posts\/477","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/self-issued.info\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/self-issued.info\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/self-issued.info\/index.php?rest_route=\/wp\/v2\/users\/4"}],"replies":[{"embeddable":true,"href":"https:\/\/self-issued.info\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=477"}],"version-history":[{"count":5,"href":"https:\/\/self-issued.info\/index.php?rest_route=\/wp\/v2\/posts\/477\/revisions"}],"predecessor-version":[{"id":862,"href":"https:\/\/self-issued.info\/index.php?rest_route=\/wp\/v2\/posts\/477\/revisions\/862"}],"wp:attachment":[{"href":"https:\/\/self-issued.info\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=477"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/self-issued.info\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=477"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/self-issued.info\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=477"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}