[Openid-specs-ab] MTI encryption algorithms not specified
Nat Sakimura
n-sakimura at nri.co.jp
Wed Aug 6 02:28:20 UTC 2014
Perhaps we may want to strategize on what kind of package we should put these in.
Nat
On Wed, 6 Aug 2014 00:55:57 +0000
Mike Jones <Michael.Jones at microsoft.com> wrote:
> During interop testing work, Roland pointed out that while we specify
> an MTI signing algorithm (RS256) we don't specify MTI encryption
> algorithms for implementations that support encryption. We come
> close for "enc" by saying in Registration that the default is
> A128CBC-HS256. But while the default for "alg" should be "RSA1_5",
> we never say that.
>
> This may not be an errata-class change, but I'd think that profiles
> that use encryption should definitely include this. Something to
> keep in mind...
>
> -- Mike
>
More information about the Openid-specs-ab
mailing list