IETF Logo Mail Archive

[jose] Updated table of platform support for JWA Algorithms

Mike Jones <Michael.Jones@microsoft.com> Wed, 25 July 2012 19:23 UTC

Return-Path: <Michael.Jones@microsoft.com>
X-Original-To: jose@ietfa.amsl.com
Delivered-To: jose@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id CB21421F8732 for <jose@ietfa.amsl.com>; Wed, 25 Jul 2012 12:23:25 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -3.777
X-Spam-Level:
X-Spam-Status: No, score=-3.777 tagged_above=-999 required=5 tests=[AWL=-0.179, BAYES_00=-2.599, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_LOW=-1]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 0eXub0p485RY for <jose@ietfa.amsl.com>; Wed, 25 Jul 2012 12:23:23 -0700 (PDT)
Received: from am1outboundpool.messaging.microsoft.com (am1ehsobe006.messaging.microsoft.com [213.199.154.209]) by ietfa.amsl.com (Postfix) with ESMTP id CBFCA21F8717 for <jose@ietf.org>; Wed, 25 Jul 2012 12:23:21 -0700 (PDT)
Received: from mail81-am1-R.bigfish.com (10.3.201.251) by AM1EHSOBE006.bigfish.com (10.3.204.26) with Microsoft SMTP Server id 14.1.225.23; Wed, 25 Jul 2012 19:23:19 +0000
Received: from mail81-am1 (localhost [127.0.0.1]) by mail81-am1-R.bigfish.com (Postfix) with ESMTP id E8D5660155 for <jose@ietf.org>; Wed, 25 Jul 2012 19:23:19 +0000 (UTC)
X-Forefront-Antispam-Report: CIP:131.107.125.8; KIP:(null); UIP:(null); IPV:NLI; H:TK5EX14HUBC105.redmond.corp.microsoft.com; RD:none; EFVD:NLI
X-SpamScore: 0
X-BigFish: VS0(zzc85fhzz1202hzz8275bh8275dhz2fh2a8h668h839hd25hf0ah107ah34h)
Received-SPF: pass (mail81-am1: domain of microsoft.com designates 131.107.125.8 as permitted sender) client-ip=131.107.125.8; envelope-from=Michael.Jones@microsoft.com; helo=TK5EX14HUBC105.redmond.corp.microsoft.com ; icrosoft.com ;
Received: from mail81-am1 (localhost.localdomain [127.0.0.1]) by mail81-am1 (MessageSwitch) id 1343244196674719_2907; Wed, 25 Jul 2012 19:23:16 +0000 (UTC)
Received: from AM1EHSMHS002.bigfish.com (unknown [10.3.201.234]) by mail81-am1.bigfish.com (Postfix) with ESMTP id 9ACE440047 for <jose@ietf.org>; Wed, 25 Jul 2012 19:23:16 +0000 (UTC)
Received: from TK5EX14HUBC105.redmond.corp.microsoft.com (131.107.125.8) by AM1EHSMHS002.bigfish.com (10.3.207.102) with Microsoft SMTP Server (TLS) id 14.1.225.23; Wed, 25 Jul 2012 19:23:13 +0000
Received: from TK5EX14MBXC285.redmond.corp.microsoft.com ([169.254.3.222]) by TK5EX14HUBC105.redmond.corp.microsoft.com ([157.54.80.48]) with mapi id 14.02.0309.003; Wed, 25 Jul 2012 19:23:03 +0000
From: Mike Jones <Michael.Jones@microsoft.com>
To: "jose@ietf.org" <jose@ietf.org>
Thread-Topic: Updated table of platform support for JWA Algorithms
Thread-Index: Ac1qmuBm81ze+PpdQ/OOwLTf7CTxHA==
Date: Wed, 25 Jul 2012 19:23:02 +0000
Message-ID: <4E1F6AAD24975D4BA5B168042967394366743D32@TK5EX14MBXC285.redmond.corp.microsoft.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach: yes
X-MS-TNEF-Correlator:
x-originating-ip: [157.54.51.35]
Content-Type: multipart/mixed; boundary="_004_4E1F6AAD24975D4BA5B168042967394366743D32TK5EX14MBXC285r_"
MIME-Version: 1.0
X-OriginatorOrg: microsoft.com
Subject: [jose] Updated table of platform support for JWA Algorithms
X-BeenThere: jose@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Javascript Object Signing and Encryption <jose.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/jose>, <mailto:jose-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/jose>
List-Post: <mailto:jose@ietf.org>
List-Help: <mailto:jose-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/jose>, <mailto:jose-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 25 Jul 2012 19:23:26 -0000

As discussed at the W3C WebCrypto working group meeting today.

                                                            -- Mike

Usage

Param Name

Param Val

Description

.NET

OSX

iOS

Java JCA

BouncyCastle

Android

PHP

PHPSecLib

Python

M2Crypto

PyCrypto

Ruby

OpenSSL

node.js

JWS/JWE

alg/int

HS256

HMAC w/ SHA-256 hash

YES

YES

YES

YES

YES

YES

YES

YES

YES

YES

YES

YES

YES

YES

JWS/JWE

alg/int

HS384

HMAC w/ SHA-384 hash

YES

YES

YES

YES

YES

YES

YES

YES

YES

YES

YES

YES

YES

YES

JWS/JWE

alg/int

HS512

HMAC w/ SHA-512 hash

YES

YES

YES

YES

YES

YES

YES

YES

YES

YES

YES

YES

YES

YES

JWS

alg

RS256

RSA w/ SHA-256 hash

YES

YES

YES

YES

YES

YES

NO

YES

NO

YES

YES

YES

YES

YES

JWS

alg

RS384

RSA w/ SHA-384 hash

YES

YES

YES

YES

YES

YES

NO

YES

NO

YES

YES

YES

YES

YES

JWS

alg

RS512

RSA w/ SHA-512 hash

YES

YES

YES

YES

YES

YES

NO

YES

NO

YES

YES

YES

YES

YES

JWS

alg

ES256

ECDSA w/ P-256 curve and SHA-256 hash

YES

YES

NO

YES?

YES

YES

NO

NO

NO

YES

NO



YES

YES

JWS

alg

ES384

ECDSA w/ P-384 curve and SHA-384 hash

YES

YES

NO

YES?

YES

YES

NO

NO

NO

YES

NO



YES

YES

JWS

alg

ES512

ECDSA w/ P-521 curve and SHA-512 hash

YES

YES

NO

YES?

YES

YES

NO

NO

NO

YES

NO



YES

YES

JWE

alg

RSA1_5

RSAES-PKCS1-V1_5

YES

YES

YES

YES

YES

YES

YES

YES

NO

YES

YES



YES

YES

JWE

alg

RSA-OAEP

RSAES OAEP

YES

YES?

YES

YES

YES

YES

NO

YES

NO

YES

YES



YES

YES

JWE

alg

ECDH-ES

Elliptic Curve Diffie-Hellman Ephemeral Static

NO*

NO?

NO

YES*

YES*

YES*

NO

NO

NO

YES?

NO



YES

YES

JWE

alg

A128KW

AES Key Wrap w/ 128 bit key

NO

YES

YES



YES

YES

NO

NO

NO

YES

YES



YES?

YES?

JWE

alg

A256KW

AES Key Wrap w/ 256 bit key

NO

YES

YES



YES

YES

NO

NO

NO

YES

YES



YES?

YES?

JWE

enc

A128CBC

AES CBC w/ 128 bit key

YES*

YES



YES*

YES*

YES*

YES*

YES*

NO

YES*

YES*



YES*

YES*

JWE

enc

A256CBC

AES CBC w/ 256 bit key

YES*

YES



YES*

YES*

YES*

YES*

YES*

NO

YES*

YES*



YES*

YES*

JWE

enc

A128GCM

AES GCM w/ 128 bit key

NO

NO?

NO

NO

YES

YES

NO

NO

NO

NO?

NO



YES

YES

JWE

enc

A256GCM

AES GCM w/ 256 bit key

NO

NO?

NO

NO

YES

YES

NO

NO

NO

NO?

NO



YES

YES

JWE

kdf

CS256

Concat Key Distribution Function (KDF)

NO





NO

NO

NO

NO

NO

NO

NO

NO



NO

NO

JWE

kdf

CS384

Concat Key Distribution Function (KDF)

NO





NO

NO

NO

NO

NO

NO

NO

NO



NO

NO

JWE

kdf

CS512

Concat Key Distribution Function (KDF)

NO





NO

NO

NO

NO

NO

NO

NO

NO



NO

NO


YES - Support built into library/platform

BouncyCastle is a crypto lib for Java

YES* - Supported but other non-supported code required (Concat KDF)

Android uses BouncyCastle

NO - Not supported in library/platform

PHPSecLib is a crypto lib for PHP

NO* - Not supported in the specified configuration (w/ Concat KDF)

M2Crypto is a crypto lib for Python

(blank) - Unknown

PyCrypto is a crypto lib for Python

? - Answer is a first impression but requires more research


PHP version 5.2

PHPSecLib version 0.3.0

PyCrypto version 2.6

Ruby 1.9.3 with ruby-openssl

Java 7

OS X 10.6 (Snow Leopard)

v2.23.0 | Report a Bug | By Email