<html><head><style type="text/css"><!-- DIV {margin:0px;} --></style></head><body><div style="font-family:tahoma,new york,times,serif;font-size:10pt"><div><span>This is in reference to the open issue # 633 at <a target="_blank" href="http://hg.openid.net/connect/issue/633/messages-42-jwk-and-x509-format-support">http://hg.openid.net/connect/issue/633/messages-42-jwk-and-x509-format-support</a></span><br>The specs currently support x509 and JWK format for publishing public keys but is silent on which must be supported.<br>There may be interop problems related to cryptographic aspects of OpenID due to lack of common support between client and server.<br><br>-- Edmund<br></div><div style="font-family:tahoma, new york, times, serif;font-size:10pt"><br><div style="font-family:times new roman, new york, times, serif;font-size:12pt"><font face="Tahoma" size="2"><hr size="1"><b><span style="font-weight: bold;">From:</span></b> Anthony Nadalin
<tonynad@microsoft.com><br><b><span style="font-weight: bold;">To:</span></b> Edmund Jay <ejay@mgi1.com>; "openid-specs-ab@lists.openid.net" <openid-specs-ab@lists.openid.net>; "openid-connect-interop@googlegroups.com" <openid-connect-interop@googlegroups.com><br><b><span style="font-weight: bold;">Sent:</span></b> Thu, July 26, 2012 1:46:41 PM<br><b><span style="font-weight: bold;">Subject:</span></b> RE: [Openid-specs-ab] Mandatory JWK Support for OpenID Connect<br></font><br>
<style><!--
_filtered {font-family:Calibri;panose-1:2 15 5 2 2 2 4 3 2 4;}
_filtered {font-family:Tahoma;panose-1:2 11 6 4 3 5 4 4 2 4;}
p.MsoNormal, li.MsoNormal, div.MsoNormal
{margin:0in;margin-bottom:.0001pt;font-size:12.0pt;font-family:"serif";}
a:link, span.MsoHyperlink
{color:blue;text-decoration:underline;}
a:visited, span.MsoHyperlinkFollowed
{color:purple;text-decoration:underline;}
span.EmailStyle17
{font-family:"sans-serif";color:#1F497D;}
.MsoChpDefault
{font-size:10.0pt;}
_filtered {margin:1.0in 1.0in 1.0in 1.0in;}
div.WordSection1
{}
--></style>
<div class="WordSection1">
<p class="MsoNormal"><span style="font-size:11.0pt;color:#1F497D;">Can you provide the rationale or a pointer to the rationale?</span></p>
<p class="MsoNormal"><span style="font-size:11.0pt;color:#1F497D;"> </span></p>
<div>
<div style="border:none;border-top:solid #B5C4DF 1.0pt;padding:3.0pt 0in 0in 0in;">
<p class="MsoNormal"><b><span style="font-size:10.0pt;">From:</span></b><span style="font-size:10.0pt;"> openid-specs-ab-bounces@lists.openid.net [mailto:openid-specs-ab-bounces@lists.openid.net]
<b>On Behalf Of </b>Edmund Jay<br>
<b>Sent:</b> Thursday, July 26, 2012 11:58 AM<br>
<b>To:</b> openid-specs-ab@lists.openid.net; openid-connect-interop@googlegroups.com<br>
<b>Subject:</b> [Openid-specs-ab] Mandatory JWK Support for OpenID Connect</span></p>
</div>
</div>
<p class="MsoNormal"> </p>
<div>
<p class="MsoNormal"><span style="font-size:10.0pt;color:black;">This is to inform everyone that the Working Group has decided to make JWK support mandatory for both the client and server.<br>
Feedbacks welcome.<br>
<br>
<br>
-- Edmund</span><span style="font-size:10.0pt;color:black;"></span></p>
</div>
</div>
</div></div>
</div></body></html>