[Openid-specs-fapi] Question regarding JWS alg in FAPI part 2, read and write security profile
philippe.leothaud at 42crunch.com
Thu Jul 20 07:05:41 UTC 2017
I guess this is due to potential problems with RSASSA-PKCS1-v1_5, see
On Thu, Jul 20, 2017 at 8:20 AM, Preibisch, Sascha H via Openid-specs-fapi <
openid-specs-fapi at lists.openid.net> wrote:
> Hi all!
> I just read through the spec. and in section 8.6
> siderations) we recommend to use PS256 or ES256 as signing algorithms.
> -3.1" PS256 is marked as OPTIONAL.
> I would like to understand why we recommend PS256 rather than RS256, which
> is RECOMMENDED and widely used.
> I saw that issue #92 spoke about this topic but I did not really
> understood it I believe.
> Openid-specs-fapi mailing list
> Openid-specs-fapi at lists.openid.net
-------------- next part --------------
An HTML attachment was scrubbed...
More information about the Openid-specs-fapi