IETF Logo Mail Archive

[jose] jwk

Axel Nennker <ignisvulpis@gmail.com> Wed, 24 October 2012 19:55 UTC

Return-Path: <ignisvulpis@gmail.com>
X-Original-To: jose@ietfa.amsl.com
Delivered-To: jose@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id C364F21F8964 for <jose@ietfa.amsl.com>; Wed, 24 Oct 2012 12:55:17 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -3.598
X-Spam-Level:
X-Spam-Status: No, score=-3.598 tagged_above=-999 required=5 tests=[BAYES_00=-2.599, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_LOW=-1]
Received: from mail.ietf.org ([64.170.98.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 3DBP8GGeYpSF for <jose@ietfa.amsl.com>; Wed, 24 Oct 2012 12:55:17 -0700 (PDT)
Received: from mail-we0-f172.google.com (mail-we0-f172.google.com [74.125.82.172]) by ietfa.amsl.com (Postfix) with ESMTP id 0F95321F88C8 for <jose@ietf.org>; Wed, 24 Oct 2012 12:55:16 -0700 (PDT)
Received: by mail-we0-f172.google.com with SMTP id u46so524108wey.31 for <jose@ietf.org>; Wed, 24 Oct 2012 12:55:16 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:date:message-id:subject:from:to:cc:content-type; bh=GH5a8CeCFUcsVIL1Lqp69JArIJprqMPPCxYIl1GYfi4=; b=hIeifGfC5nN5zD4OyCQFQKv5lH+rWhIU5emI3arPxMZhCbiihHBg8Ydv5EkbHdlR/W dpxTs1rgKkSDDgZ9m5PGWibHlVj3y6SYiaZs4gqvcya0CNKPb3Ft9ogZGOHD2EL+Rbmf +mCsGiPsCD/6nz8LHGdLC6zJmh1mD0XJASKgnAE8g6pXAFoGN/hcOcvviFVN/CYnvwU4 9WFn5/qSnp/dT32e+DaLDjd37cPFv/wwWQXPQ68ViQLPxkcDoRWOFt4ZXTlP9kGoQmjz /YWaNqout4f+MamolD19ODl/F4akyVyynE0Bwp/LhPcodk6Mft7uz9KiTAq57cJT9vjo bIQQ==
MIME-Version: 1.0
Received: by 10.180.80.100 with SMTP id q4mr8236434wix.20.1351108516276; Wed, 24 Oct 2012 12:55:16 -0700 (PDT)
Received: by 10.216.54.130 with HTTP; Wed, 24 Oct 2012 12:55:16 -0700 (PDT)
Date: Wed, 24 Oct 2012 21:55:16 +0200
Message-ID: <CAHcDwFziH9QF1TgbywGzi2VPiwADpgdOxzrN1xtTN2pjLJOXOw@mail.gmail.com>
From: Axel Nennker <ignisvulpis@gmail.com>
To: jose@ietf.org
Content-Type: multipart/alternative; boundary="f46d044283542a688404ccd3770c"
Cc: "Michael B. Jones" <Michael.Jones@microsoft.com>
Subject: [jose] jwk
X-BeenThere: jose@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Javascript Object Signing and Encryption <jose.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/jose>, <mailto:jose-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/jose>
List-Post: <mailto:jose@ietf.org>
List-Help: <mailto:jose-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/jose>, <mailto:jose-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 24 Oct 2012 19:55:18 -0000

I think that having more choices other than (xpo, mod) is useful.
I believe that it is easier for me to implement keys in Firefox if I have
PEM encoded keys.

So the format could be:

user_jwk : {"pub":
"MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4OTqe0p1tgEoOVtDzjQI
yP1Ipo8ivqTIeH4yH9kLzI4fCKx6ggZJ3h9ecj4p5E355umCThN/1doBc/tq18VGlNtyDNxCh45Z1zGYJKwZxaVaWQXlB2gfgnko1D+Zw9KIlipQHtnhJw/qREEIp4YOgaGcSZBCcQQ4DYCOjfTTbKUXSTlrlOgflfgTiyhUFuiKWkoeivwASigL76PtYNYc
n+dlYKYB/vSQ2CY7FtaDcr22EdqUDVPLNg1+K1rsvHvllP7iTnXA5IgxT5JELdrk
KX9Ek68zDzelOaJxs2tbkkwbqSLQfREzQ/yGAIOW9rZVqlaVBEBzUYzREmeybVq3 gwIDAQAB"
}
// PEM encoded public key without linebreaks

A more general format would be:

jwk: { "-----BEGIN PUBLIC KEY-----":
"MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4OTqe0p1tgEoOVtDzjQI
yP1Ipo8ivqTIeH4yH9kLzI4fCKx6ggZJ3h9ecj4p5E355umCThN/1doBc/tq18VGlNtyDNxCh45Z1zGYJKwZxaVaWQXlB2gfgnko1D+Zw9KIlipQHtnhJw/qREEIp4YOgaGcSZBCcQQ4DYCOjfTTbKUXSTlrlOgflfgTiyhUFuiKWkoeivwASigL76PtYNYc
n+dlYKYB/vSQ2CY7FtaDcr22EdqUDVPLNg1+K1rsvHvllP7iTnXA5IgxT5JELdrk
KX9Ek68zDzelOaJxs2tbkkwbqSLQfREzQ/yGAIOW9rZVqlaVBEBzUYzREmeybVq3 gwIDAQAB"
}

This general format could be used for private keys too.

What do you think?

Axel

ps: Don't know whether I can post from this email address.... Mike, would
you lease post it if it does appear in your inbox but not on the list.
Thanks.

v2.23.0 | Report a Bug | By Email