| < draft-ietf-jose-json-web-algorithms-39.txt | draft-ietf-jose-json-web-algorithms-40.txt > | |||
|---|---|---|---|---|
| JOSE Working Group M. Jones | JOSE Working Group M. Jones | |||
| Internet-Draft Microsoft | Internet-Draft Microsoft | |||
| Intended status: Standards Track December 30, 2014 | Intended status: Standards Track January 13, 2015 | |||
| Expires: July 3, 2015 | Expires: July 17, 2015 | |||
| JSON Web Algorithms (JWA) | JSON Web Algorithms (JWA) | |||
| draft-ietf-jose-json-web-algorithms-39 | draft-ietf-jose-json-web-algorithms-40 | |||
| Abstract | Abstract | |||
| The JSON Web Algorithms (JWA) specification registers cryptographic | The JSON Web Algorithms (JWA) specification registers cryptographic | |||
| algorithms and identifiers to be used with the JSON Web Signature | algorithms and identifiers to be used with the JSON Web Signature | |||
| (JWS), JSON Web Encryption (JWE), and JSON Web Key (JWK) | (JWS), JSON Web Encryption (JWE), and JSON Web Key (JWK) | |||
| specifications. It defines several IANA registries for these | specifications. It defines several IANA registries for these | |||
| identifiers. | identifiers. | |||
| Status of this Memo | Status of this Memo | |||
| skipping to change at page 1, line 34 ¶ | skipping to change at page 1, line 34 ¶ | |||
| Internet-Drafts are working documents of the Internet Engineering | Internet-Drafts are working documents of the Internet Engineering | |||
| Task Force (IETF). Note that other groups may also distribute | Task Force (IETF). Note that other groups may also distribute | |||
| working documents as Internet-Drafts. The list of current Internet- | working documents as Internet-Drafts. The list of current Internet- | |||
| Drafts is at http://datatracker.ietf.org/drafts/current/. | Drafts is at http://datatracker.ietf.org/drafts/current/. | |||
| Internet-Drafts are draft documents valid for a maximum of six months | Internet-Drafts are draft documents valid for a maximum of six months | |||
| and may be updated, replaced, or obsoleted by other documents at any | and may be updated, replaced, or obsoleted by other documents at any | |||
| time. It is inappropriate to use Internet-Drafts as reference | time. It is inappropriate to use Internet-Drafts as reference | |||
| material or to cite them other than as "work in progress." | material or to cite them other than as "work in progress." | |||
| This Internet-Draft will expire on July 3, 2015. | This Internet-Draft will expire on July 17, 2015. | |||
| Copyright Notice | Copyright Notice | |||
| Copyright (c) 2014 IETF Trust and the persons identified as the | Copyright (c) 2015 IETF Trust and the persons identified as the | |||
| document authors. All rights reserved. | document authors. All rights reserved. | |||
| This document is subject to BCP 78 and the IETF Trust's Legal | This document is subject to BCP 78 and the IETF Trust's Legal | |||
| Provisions Relating to IETF Documents | Provisions Relating to IETF Documents | |||
| (http://trustee.ietf.org/license-info) in effect on the date of | (http://trustee.ietf.org/license-info) in effect on the date of | |||
| publication of this document. Please review these documents | publication of this document. Please review these documents | |||
| carefully, as they describe your rights and restrictions with respect | carefully, as they describe your rights and restrictions with respect | |||
| to this document. Code Components extracted from this document must | to this document. Code Components extracted from this document must | |||
| include Simplified BSD License text as described in Section 4.e of | include Simplified BSD License text as described in Section 4.e of | |||
| the Trust Legal Provisions and are provided without warranty as | the Trust Legal Provisions and are provided without warranty as | |||
| skipping to change at page 5, line 39 ¶ | skipping to change at page 5, line 39 ¶ | |||
| "SHOULD", "SHOULD NOT", "RECOMMENDED", "NOT RECOMMENDED", "MAY", and | "SHOULD", "SHOULD NOT", "RECOMMENDED", "NOT RECOMMENDED", "MAY", and | |||
| "OPTIONAL" in this document are to be interpreted as described in Key | "OPTIONAL" in this document are to be interpreted as described in Key | |||
| words for use in RFCs to Indicate Requirement Levels [RFC2119]. If | words for use in RFCs to Indicate Requirement Levels [RFC2119]. If | |||
| these words are used without being spelled in uppercase then they are | these words are used without being spelled in uppercase then they are | |||
| to be interpreted with their normal natural language meanings. | to be interpreted with their normal natural language meanings. | |||
| BASE64URL(OCTETS) denotes the base64url encoding of OCTETS, per | BASE64URL(OCTETS) denotes the base64url encoding of OCTETS, per | |||
| Section 2 of [JWS]. | Section 2 of [JWS]. | |||
| UTF8(STRING) denotes the octets of the UTF-8 [RFC3629] representation | UTF8(STRING) denotes the octets of the UTF-8 [RFC3629] representation | |||
| of STRING. | of STRING, where STRING is a sequence of zero or more Unicode | |||
| [UNICODE] characters. | ||||
| ASCII(STRING) denotes the octets of the ASCII [RFC20] representation | ASCII(STRING) denotes the octets of the ASCII [RFC20] representation | |||
| of STRING. | of STRING, where STRING is a sequence of zero or more ASCII | |||
| characters. | ||||
| The concatenation of two values A and B is denoted as A || B. | The concatenation of two values A and B is denoted as A || B. | |||
| 2. Terminology | 2. Terminology | |||
| These terms defined by the JSON Web Signature (JWS) [JWS] | These terms defined by the JSON Web Signature (JWS) [JWS] | |||
| specification are incorporated into this specification: "JSON Web | specification are incorporated into this specification: "JSON Web | |||
| Signature (JWS)", "Base64url Encoding", "Header Parameter", "JOSE | Signature (JWS)", "Base64url Encoding", "Header Parameter", "JOSE | |||
| Header", "JWS Payload", "JWS Protected Header", "JWS Signature", "JWS | Header", "JWS Payload", "JWS Protected Header", "JWS Signature", "JWS | |||
| Signing Input", and "Unsecured JWS". | Signing Input", and "Unsecured JWS". | |||
| skipping to change at page 54, line 15 ¶ | skipping to change at page 54, line 15 ¶ | |||
| [Boneh99] "Twenty years of attacks on the RSA cryptosystem", Notices | [Boneh99] "Twenty years of attacks on the RSA cryptosystem", Notices | |||
| of the American Mathematical Society (AMS), Vol. 46, No. | of the American Mathematical Society (AMS), Vol. 46, No. | |||
| 2, pp. 203-213 http://crypto.stanford.edu/~dabo/pubs/ | 2, pp. 203-213 http://crypto.stanford.edu/~dabo/pubs/ | |||
| papers/RSA-survey.pdf, 1999. | papers/RSA-survey.pdf, 1999. | |||
| [DSS] National Institute of Standards and Technology, "Digital | [DSS] National Institute of Standards and Technology, "Digital | |||
| Signature Standard (DSS)", FIPS PUB 186-4, July 2013. | Signature Standard (DSS)", FIPS PUB 186-4, July 2013. | |||
| [JWE] Jones, M. and J. Hildebrand, "JSON Web Encryption (JWE)", | [JWE] Jones, M. and J. Hildebrand, "JSON Web Encryption (JWE)", | |||
| draft-ietf-jose-json-web-encryption (work in progress), | draft-ietf-jose-json-web-encryption (work in progress), | |||
| December 2014. | January 2015. | |||
| [JWK] Jones, M., "JSON Web Key (JWK)", | [JWK] Jones, M., "JSON Web Key (JWK)", | |||
| draft-ietf-jose-json-web-key (work in progress), | draft-ietf-jose-json-web-key (work in progress), | |||
| December 2014. | January 2015. | |||
| [JWS] Jones, M., Bradley, J., and N. Sakimura, "JSON Web | [JWS] Jones, M., Bradley, J., and N. Sakimura, "JSON Web | |||
| Signature (JWS)", draft-ietf-jose-json-web-signature (work | Signature (JWS)", draft-ietf-jose-json-web-signature (work | |||
| in progress), December 2014. | in progress), January 2015. | |||
| [NIST.800-38A] | [NIST.800-38A] | |||
| National Institute of Standards and Technology (NIST), | National Institute of Standards and Technology (NIST), | |||
| "Recommendation for Block Cipher Modes of Operation", | "Recommendation for Block Cipher Modes of Operation", | |||
| NIST PUB 800-38A, December 2001. | NIST PUB 800-38A, December 2001. | |||
| [NIST.800-38D] | [NIST.800-38D] | |||
| National Institute of Standards and Technology (NIST), | National Institute of Standards and Technology (NIST), | |||
| "Recommendation for Block Cipher Modes of Operation: | "Recommendation for Block Cipher Modes of Operation: | |||
| Galois/Counter Mode (GCM) and GMAC", NIST PUB 800-38D, | Galois/Counter Mode (GCM) and GMAC", NIST PUB 800-38D, | |||
| skipping to change at page 55, line 43 ¶ | skipping to change at page 55, line 43 ¶ | |||
| [RFC7159] Bray, T., "The JavaScript Object Notation (JSON) Data | [RFC7159] Bray, T., "The JavaScript Object Notation (JSON) Data | |||
| Interchange Format", RFC 7159, March 2014. | Interchange Format", RFC 7159, March 2014. | |||
| [SEC1] Standards for Efficient Cryptography Group, "SEC 1: | [SEC1] Standards for Efficient Cryptography Group, "SEC 1: | |||
| Elliptic Curve Cryptography", Version 2.0, May 2009. | Elliptic Curve Cryptography", Version 2.0, May 2009. | |||
| [SHS] National Institute of Standards and Technology, "Secure | [SHS] National Institute of Standards and Technology, "Secure | |||
| Hash Standard (SHS)", FIPS PUB 180-4, March 2012. | Hash Standard (SHS)", FIPS PUB 180-4, March 2012. | |||
| [UNICODE] The Unicode Consortium, "The Unicode Standard", 1991-, | ||||
| <http://www.unicode.org/versions/latest/>. | ||||
| 10.2. Informative References | 10.2. Informative References | |||
| [CanvasApp] | [CanvasApp] | |||
| Facebook, "Canvas Applications", 2010. | Facebook, "Canvas Applications", 2010. | |||
| [I-D.ietf-precis-saslprepbis] | [I-D.ietf-precis-saslprepbis] | |||
| Saint-Andre, P. and A. Melnikov, "Preparation, | Saint-Andre, P. and A. Melnikov, "Preparation, | |||
| Enforcement, and Comparison of Internationalized Strings | Enforcement, and Comparison of Internationalized Strings | |||
| Representing Usernames and Passwords", | Representing Usernames and Passwords", | |||
| draft-ietf-precis-saslprepbis-13 (work in progress), | draft-ietf-precis-saslprepbis-13 (work in progress), | |||
| skipping to change at page 67, line 29 ¶ | skipping to change at page 67, line 29 ¶ | |||
| Jim Schaad, Hannes Tschofenig, and Sean Turner. | Jim Schaad, Hannes Tschofenig, and Sean Turner. | |||
| Jim Schaad and Karen O'Donoghue chaired the JOSE working group and | Jim Schaad and Karen O'Donoghue chaired the JOSE working group and | |||
| Sean Turner, Stephen Farrell, and Kathleen Moriarty served as | Sean Turner, Stephen Farrell, and Kathleen Moriarty served as | |||
| Security area directors during the creation of this specification. | Security area directors during the creation of this specification. | |||
| Appendix E. Document History | Appendix E. Document History | |||
| [[ to be removed by the RFC Editor before publication as an RFC ]] | [[ to be removed by the RFC Editor before publication as an RFC ]] | |||
| -40 | ||||
| o Clarified the definitions of UTF8(STRING) and ASCII(STRING). | ||||
| -39 | -39 | |||
| o Added the Algorithm Analysis Documents(s) field to the IANA JSON | o Added the Algorithm Analysis Documents(s) field to the IANA JSON | |||
| Web Signature and Encryption Algorithms registry. | Web Signature and Encryption Algorithms registry. | |||
| o Updated the reference to draft-ietf-precis-saslprepbis. | o Updated the reference to draft-ietf-precis-saslprepbis. | |||
| -38 | -38 | |||
| o Require discarding private keys with an "oth" parameter when the | o Require discarding private keys with an "oth" parameter when the | |||
| End of changes. 11 change blocks. | ||||
| 10 lines changed or deleted | 19 lines changed or added | |||
This html diff was produced by rfcdiff 1.48. The latest version is available from http://tools.ietf.org/tools/rfcdiff/ | ||||