[Openid-specs-ab] Issue #910: Core - 15.14. Signing and Encryption Order (openid/connect)
Nat Sakimura
issues-reply at bitbucket.org
Mon Dec 2 17:42:25 UTC 2013
New issue 910: Core - 15.14. Signing and Encryption Order
https://bitbucket.org/openid/connect/issue/910/core-1514-signing-and-encryption-order
Nat Sakimura:
It may be worthwhile to point out that all JWE algorithms are integrity protecting as well.
Proposal:
Add the following as the second paragraph.
NOTE: All encryption algorithms used in JWE are AEAD algorithms that protects integrity so there is no need to oversign the encrypted payload separately.
More information about the Openid-specs-ab
mailing list