Re: [woes] [Openid-specs-ab] JSON Web Key (JWK) Specification
Nat <sakimura@gmail.com> Sun, 01 May 2011 07:34 UTC
Return-Path: <sakimura@gmail.com>
X-Original-To: woes@ietfa.amsl.com
Delivered-To: woes@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id D670AE0716 for <woes@ietfa.amsl.com>; Sun, 1 May 2011 00:34:44 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.202
X-Spam-Level:
X-Spam-Status: No, score=-2.202 tagged_above=-999 required=5 tests=[BAYES_00=-2.599, HTML_MESSAGE=0.001, MIME_QP_LONG_LINE=1.396, RCVD_IN_DNSWL_LOW=-1]
Received: from mail.ietf.org ([64.170.98.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Xb1jfomQlgKM for <woes@ietfa.amsl.com>; Sun, 1 May 2011 00:34:43 -0700 (PDT)
Received: from mail-pv0-f172.google.com (mail-pv0-f172.google.com [74.125.83.172]) by ietfa.amsl.com (Postfix) with ESMTP id BCA0DE0651 for <woes@ietf.org>; Sun, 1 May 2011 00:34:43 -0700 (PDT)
Received: by pvh1 with SMTP id 1so3529271pvh.31 for <woes@ietf.org>; Sun, 01 May 2011 00:34:43 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:references:in-reply-to:mime-version :content-transfer-encoding:content-type:message-id:cc:x-mailer:from :subject:date:to; bh=kJKBErDxP832PHIQNFHEdXvQuyJGBpqP2uT+/wpbM8I=; b=cF/CV21l+SMsYy4jioNHPjBX8shSFi4LoiGvncbl/wihFrOn+KPiSLBfkTDeEV9jQG gk2n9bxmM/ANJTFslOHal55YSSoKa7UrMbOeRvGLhUHp54BIjpmkGhcOp/w2cElYeMzd f1BmPTqZ1haOMoE5LYsr0K2GFbbPsQPMpoRKg=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=references:in-reply-to:mime-version:content-transfer-encoding :content-type:message-id:cc:x-mailer:from:subject:date:to; b=mwV0ksNETlxjr2XL/MgQb++1h5psj70781END9aNG6k+BzTldzt1sRKRxkAjSnvNuo DyQqvpmm/iErlWHG+pPnvKt63Fm9vddnJn4yIiMOM9i/qj99QHbC6lq+w3zKNrFTW0w3 kEzYVPrqqWAPWNWMD2IaySEUW2nR82d0rX+xI=
Received: by 10.68.21.194 with SMTP id x2mr4353608pbe.190.1304235283512; Sun, 01 May 2011 00:34:43 -0700 (PDT)
Received: from [192.168.0.254] (80.sub-75-208-129.myvzw.com [75.208.129.80]) by mx.google.com with ESMTPS id t6sm3031715pbc.21.2011.05.01.00.34.39 (version=TLSv1/SSLv3 cipher=OTHER); Sun, 01 May 2011 00:34:42 -0700 (PDT)
References: <4E1F6AAD24975D4BA5B168042967394330CCA6E6@TK5EX14MBXC202.redmond.corp.microsoft.com>
In-Reply-To: <4E1F6AAD24975D4BA5B168042967394330CCA6E6@TK5EX14MBXC202.redmond.corp.microsoft.com>
Mime-Version: 1.0 (iPhone Mail 8G4)
Content-Transfer-Encoding: 7bit
Content-Type: multipart/alternative; boundary="Apple-Mail-5--489435618"
Message-Id: <47B4A7FB-DB76-432A-9F68-2CA720FB53BB@gmail.com>
X-Mailer: iPhone Mail (8G4)
From: Nat <sakimura@gmail.com>
Date: Sun, 01 May 2011 00:32:11 -0700
To: Mike Jones <Michael.Jones@microsoft.com>
X-Mailman-Approved-At: Mon, 02 May 2011 08:12:53 -0700
Cc: "openid-specs-ab@lists.openid.net" <openid-specs-ab@lists.openid.net>, "woes@ietf.org" <woes@ietf.org>
Subject: Re: [woes] [Openid-specs-ab] JSON Web Key (JWK) Specification
X-BeenThere: woes@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: "Web Object Encryption and Signing \(woes\) BOF discussion list" <woes.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/woes>, <mailto:woes-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/woes>
List-Post: <mailto:woes@ietf.org>
List-Help: <mailto:woes-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/woes>, <mailto:woes-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sun, 01 May 2011 07:34:44 -0000
Thanks Mike. I plan to update core a bit to match the OAuth d15 terminology. =nat via iPhone On 2011/05/01, at 0:09, Mike Jones <Michael.Jones@microsoft.com> wrote: > I’ve posted the JSON Web Key (JWK) specification for representing public keys as JSON objects based on the decisions made at the last IIW. The introduction to the spec reads: > > A JSON Web Key (JWK) is a JSON data structure that represents a set of public keys as a JSON object. The JWK format is used to represent bare keys; representing certificate chains is an explicit non-goal of this specification. JSON Web Keys are referenced in JSON Web Signatures (JWSs) using the jku (JSON Key URL) header parameter. > > An example from the spec is: > > {"keyvalues": > [ > {"algorithm":"ECDSA", > "curve":"P-256", > "x":"MKBCTNIcKUSDii11ySs3526iDZ8AiTo7Tu6KPAqv7D4", > "y":"4Etl6SRW2YiLUrN5vfvVHuhp7x8PxltmWWlbbM4IFyM", > "keyid":"1"}, > > {"algorithm":"RSA", > "modulus": "0vx7agoebGcQSuuPiLJXZptN9nndrQmbXEps2aiAFbWhM78LhWx4cbbfAAtVT86zwu1RK7aPFFxuhDR1L6tSoc_BJECPebWKRXjBZCiFV4n3oknjhMstn64tZ_2W-5JsGY4Hc5n9yBXArwl93lqt7_RN5w6Cf0h4QyQ5v-65YGjQR0_FDW2QvzqY368QQMicAtaSqzs8KJZgnYb9c7d0zgdAZHzu6qMQvRL5hajrn1n91CbOpbISD08qNLyrdkt-bFTWhAI4vMQFh6WeZu0fM4lFd2NcRwr3XPksINHaQ-G_xBniIqbw0Ls1jF44-csFCur-kEgU8awapJzKnqDKgw", > "exponent":"AQAB", > "keyid":"2011-04-29"} > ] > } > > The specification is available at these locations: > · http://www.ietf.org/internet-drafts/draft-jones-json-web-key-00.txt > · http://www.ietf.org/internet-drafts/draft-jones-json-web-key-00.xml > · http://self-issued.info/docs/draft-jones-json-web-key-00.html > · http://self-issued.info/docs/draft-jones-json-web-key-00.txt > · http://self-issued.info/docs/draft-jones-json-web-key-00.xml > · http://self-issued.info/docs/draft-jones-json-web-key.html (will point to new versions as they are posted) > · http://self-issued.info/docs/draft-jones-json-web-key.txt (will point to new versions as they are posted) > · http://self-issued.info/docs/draft-jones-json-web-key.xml (will point to new versions as they are posted) > · http://svn.openid.net/repos/specifications/json_web_key/1.0/ (Subversion repository, with html, txt, and html versions available) > > I also updated the description of the JSON Web Signature (JWS) header parameter “jku” (JSON Key URL) to reference the JWK spec in draft -02. > > -- Mike > > _______________________________________________ > Openid-specs-ab mailing list > Openid-specs-ab@lists.openid.net > http://lists.openid.net/mailman/listinfo/openid-specs-ab