[OAUTH-WG] JWT: Unsecured JWS for JWS JASON Serialisation
Buhake Sindi <buhake@gmail.com> Fri, 07 July 2017 20:22 UTC
Return-Path: <buhake@gmail.com>
X-Original-To: oauth@ietfa.amsl.com
Delivered-To: oauth@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 323C8126C3D for <oauth@ietfa.amsl.com>; Fri, 7 Jul 2017 13:22:14 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.698
X-Spam-Level:
X-Spam-Status: No, score=-2.698 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_LOW=-0.7, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id HhGdW4Y_hqkZ for <oauth@ietfa.amsl.com>; Fri, 7 Jul 2017 13:22:12 -0700 (PDT)
Received: from mail-qk0-x22c.google.com (mail-qk0-x22c.google.com [IPv6:2607:f8b0:400d:c09::22c]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id A1222131678 for <OAuth@ietf.org>; Fri, 7 Jul 2017 13:22:12 -0700 (PDT)
Received: by mail-qk0-x22c.google.com with SMTP id d78so36545320qkb.1 for <OAuth@ietf.org>; Fri, 07 Jul 2017 13:22:12 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:in-reply-to:references:from:date:message-id:subject:to; bh=M29McPR1cfUdmTsytJ/L6ARbkpRAatnfOcEkMtjkp9U=; b=TyMeOr+rkeGoSaXSTSc8m7ixB8CgwtWoCLuwajpjyMX4QjDh5BScpe1sFGPZZ578o5 axJE6rf5xpAsh9XHmnnLdHdPMKdqOTLGAkSVH5ZO7q1G+K2r3XEAcSjwHVeEkmxk6k7e qgK8hCvO4xjd/hLWfoAyghoFzuNjwi+BRurK1uAyDkEhOWirxd11bKIydrzFteADus1G eRm0O+XQmo3ZWBM9OpXiRIPhx2uDMgOfnZop9934U6SxmUFhmpE55b4GYvm6a7+CCWuu mNcn7ig0PGFb9t7I+CVlwqMZoZVpF3q6dHUjJaHraMQ40fC5fsEgBqzHRilFhQSxEroy 8Byw==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:in-reply-to:references:from:date :message-id:subject:to; bh=M29McPR1cfUdmTsytJ/L6ARbkpRAatnfOcEkMtjkp9U=; b=oHutVB+aPE8Wi59KUgbJtF2TctEWW9ijOKezLvAJwHj37y2M9gboNOURGW65uvjY2H pofBHTUy6FmKKr9NfEk0u1KUGqRPadyfNPtQ4fCkWm7QGvoyvYY8f7qRhkUTnjexHEUv Q+4F2iJjgdT97Gt7j9LFYOjmhGSbiOZgoeaF2pdCA/uzFTkOwCK4tVrVjOwnjVxxOeoU D89cjbJigwyb103MasoVUI3UbvVQZiNfQL2WqTRTkmtBCU5m2X9bOe9+YY+Gb5khVEmy mqcPYHjEa83Q6Mjqo2CAfebrs9A2mGOQqiRy/PM2/rT9n9Yj52lDVGjHuzT/BcPiBAGD 9sbw==
X-Gm-Message-State: AIVw113AqQvP93dsnEsrs2izVxXmcxgqP93trkeUQlnp3oskUc7Br6Zw exnPpkxud8bGcZmF7HN6sQhHYBcA3A==
X-Received: by 10.55.144.130 with SMTP id s124mr55592086qkd.136.1499458931670; Fri, 07 Jul 2017 13:22:11 -0700 (PDT)
MIME-Version: 1.0
Received: by 10.237.34.71 with HTTP; Fri, 7 Jul 2017 13:22:10 -0700 (PDT)
Received: by 10.237.34.71 with HTTP; Fri, 7 Jul 2017 13:22:10 -0700 (PDT)
In-Reply-To: <CABUp4f4QXfMeo3Fsob+2dzAp=pOCSmj1CCtBuCQ4mmOMq6Kmhw@mail.gmail.com>
References: <CABUp4f7zH9t6xKOah7_hjdqUOUZ522YKdY=6cMTuHeNEUPeqww@mail.gmail.com> <CABUp4f4AbFzszD66CnjmDBoo=X+zc5krF+xpDhyd5iZbF8+yPw@mail.gmail.com> <CABUp4f4XvYHGYHVPBso1z40knU1-JOP+nzDyhoYh=zHjjtH9_g@mail.gmail.com> <CABUp4f4QXfMeo3Fsob+2dzAp=pOCSmj1CCtBuCQ4mmOMq6Kmhw@mail.gmail.com>
From: Buhake Sindi <buhake@gmail.com>
Date: Fri, 07 Jul 2017 22:22:10 +0200
Message-ID: <CABUp4f7gudf74QpEvhYbAOxw2PPibPV=4ncLjmH=U2JMz2JP_g@mail.gmail.com>
To: OAuth@ietf.org
Content-Type: multipart/alternative; boundary="94eb2c0848acfa43da0553bffcf3"
Archived-At: <https://mailarchive.ietf.org/arch/msg/oauth/Db8JUfcn4YA0zS6YF5H_gRloRCQ>
Subject: [OAUTH-WG] JWT: Unsecured JWS for JWS JASON Serialisation
X-BeenThere: oauth@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: OAUTH WG <oauth.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/oauth>, <mailto:oauth-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/oauth/>
List-Post: <mailto:oauth@ietf.org>
List-Help: <mailto:oauth-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/oauth>, <mailto:oauth-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 07 Jul 2017 20:22:14 -0000
Hi everyone, As I am busy implementing the JWT RFCs out there, I have noticed that there is no mention of how to handle unsecured JWS for JSON Serialisation. How would one treat Unsecured JWS in this case, also in the same case when content is detached? Thank you for your time, Kind Regards, Buhake Sindi www.sindi.co.za
- [OAUTH-WG] JWT: Unsecured JWS for JWS JASON Seria… Buhake Sindi