[COSE] Potential uses of PoP keys in CBOR Web Tokens (CWTs)
Hannes Tschofenig <hannes.tschofenig@gmx.net> Mon, 12 June 2017 18:18 UTC
Return-Path: <hannes.tschofenig@gmx.net>
X-Original-To: cose@ietfa.amsl.com
Delivered-To: cose@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 3B11912EB4F for <cose@ietfa.amsl.com>; Mon, 12 Jun 2017 11:18:37 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.921
X-Spam-Level:
X-Spam-Status: No, score=-1.921 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, FREEMAIL_FROM=0.001, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_MSPIKE_H3=-0.01, RCVD_IN_MSPIKE_WL=-0.01, RP_MATCHES_RCVD=-0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Sn_DBdmEFdGM for <cose@ietfa.amsl.com>; Mon, 12 Jun 2017 11:18:35 -0700 (PDT)
Received: from mout.gmx.net (mout.gmx.net [212.227.17.20]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 24AF712969E for <cose@ietf.org>; Mon, 12 Jun 2017 11:18:34 -0700 (PDT)
Received: from [192.168.91.196] ([80.92.114.129]) by mail.gmx.com (mrgmx102 [212.227.17.168]) with ESMTPSA (Nemesis) id 0Meutp-1dVf6u1J0L-00OZXz; Mon, 12 Jun 2017 20:18:25 +0200
To: "cose@ietf.org" <cose@ietf.org>
From: Hannes Tschofenig <hannes.tschofenig@gmx.net>
Openpgp: id=071A97A9ECBADCA8E31E678554D9CEEF4D776BC9
Cc: Kepeng Li <kepeng.lkp@alibaba-inc.com>, Hannes Tschofenig <Hannes.Tschofenig@arm.com>
Message-ID: <ff7e5b80-0ebf-631f-adf8-88ffc33f37d7@gmx.net>
Date: Mon, 12 Jun 2017 20:18:21 +0200
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:52.0) Gecko/20100101 Thunderbird/52.1.1
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Language: en-US
Content-Transfer-Encoding: 8bit
X-Provags-ID: V03:K0:e+8qDT1l/SSX+Pnv/t0Mpd9dTmkLh75keIz/x1fSNkNM1qZyDRH E1+M2EBpDLjxBNXFHbQL+DjRkzaTNVFyD/RJArNQ02jAxy7ehLOM5LGyiyJy8D+PWPbSzAX J8jEwX1Vw4edObrPoQHuUrzPE+yylcVzom2iPGQUbqHDihi0O+xC/FSjuBMDXLjNHGiWwEH 0ubvDt9EYtIdknAmKDmpg==
X-UI-Out-Filterresults: notjunk:1;V01:K0:tRGy8uAMdg4=:1uwVxZCVI7xCIR+Z7QZ3wh XgsoRCmDtkzs33Bjy7WUNa72bjZ5tfAFiXMqAvSJdkhd5SRQYs7lGV7Ujphb+aYTrtdFj6rJf CujdSGd0YsFbVXZb5yWYtLW3InhfwZmh4iiCWsKmyvgZA4YZsf0B/W6niN345BTt1EUkicsye zgYPhxRWRjJd2tdu/RaXdDTmWlnkcg04M3ylpjjxaDucmhVDHG8MIC2uXJtPoLztXtTKxb1lu AixYYjwV6rcT2hEdnysy0LICLa6d1bak5F94kNi5RMr8v3W25+JZB7lESdDe6Aq4aF0sCZF7T u9PHnK2N64o0SHmuScBlRs9PO+zN1SrbtujxHO799E/cuX++PZiipT9WKwNpv6ctwNpwALet4 vPGt/BIaVx0oYjMhRIbwLjHZyy2UFemzDgkwazUba2MvmixvEJQdP0lBHdZmwbU4AZk5QK4Eu eViJi0inpnUUXhB83qrLvXVA38xUWtzE6mFp6K0wJgPNdX5mINm1swdQ6YM6qBUkhzOQcQ4eQ 1PFsTmAMtmEVEh5zgZYlyGlaMoL68caOTh3c4B5K+rjJ378vOANZm2lGf9XckLKv5FQJmpObo y3DBNH1UUtV6keuxj5WW5ADTPgSPf+hBYlSH+iZW7/SgfHGT7vgJ3x9KtWsQXuOUeFZLoEvGp n8R9pBRFaLl78EEnI6G46xcfSCY6H9C7Uhc1Qpc1bXFzkp1QUdiSGGjKvlW1PEdCt/B53mdLP B3/f2CVfARS2CODYiPoGMUet6F3vHUROwaMRT3xrpLAtN0VPh31sL5hQvQNu/t6rN2sFPrkCR RDJHPQg
Archived-At: <https://mailarchive.ietf.org/arch/msg/cose/RewVvFoM6mwIq3kif36KKwoaYU8>
Subject: [COSE] Potential uses of PoP keys in CBOR Web Tokens (CWTs)
X-BeenThere: cose@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: CBOR Object Signing and Encryption <cose.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/cose>, <mailto:cose-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/cose/>
List-Post: <mailto:cose@ietf.org>
List-Help: <mailto:cose-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/cose>, <mailto:cose-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 12 Jun 2017 18:18:37 -0000
Hi all, RFC 7800 defines how to communicate Proof of Possession (PoP) keys for JSON Web Tokens (JWTs) [RFC 7519]. The CBOR Web Token (CWT) draft-ietf-ace-cbor-web-token spec defines the CBOR/COSE equivalent of the JSON/JOSE JWT spec. The ACE working group is planning to also define a CBOR/COSE equivalent of RFC 7800 and is interested in knowing how you might use CBOR proof-of-possession keys for CWTs. Please drop us a message if you are using CBOR PoP keys for CWTs. We would like to learn more about your usage. Ciao Hannes & Kepeng
- [COSE] Potential uses of PoP keys in CBOR Web Tokā¦ Hannes Tschofenig