[Openid-specs-ab] FW: JOSE -11 drafts and JWT -08 released

Mike Jones Michael.Jones at microsoft.com
Tue May 28 15:13:27 UTC 2013


These are the JOSE and JWT specs that we'll base the Implementer's Drafts on.

                                                            -- Mike

From: Mike Jones
Sent: Tuesday, May 28, 2013 8:11 AM
To: jose at ietf.org
Subject: JOSE -11 drafts and JWT -08 released

The -11 drafts of the JSON Object Signing and Encryption (JOSE)<http://datatracker.ietf.org/wg/jose/> specifications have been released that incorporate the changes agreed to at the interim working group meeting last month.  Most of the changes were to the JWS and JWE JSON Serialization representations, enabling more flexible treatment of header parameter values.  Other changes included removing the Encrypted Key value from the JWE integrity calculation, saying more about key identification, adding key identification parameters to some of the examples, clarifying the use of "kid" values in JWK Sets, enabling X.509 key representations in JWKs, recommending protecting JWKs containing non-public information by encrypting them with JWE, adding "alg" values for RSASSA-PSS, registering additional MIME types, and a number of clarifications.  A corresponding -08 JSON Web Token (JWT) spec was also released that updated the encrypted JWT example value to track the JWE change.  Hopefully this will be the last breaking change to the encryption calculations.

The specifications are available at:

*        http://tools.ietf.org/html/draft-ietf-jose-json-web-signature-11

*        http://tools.ietf.org/html/draft-ietf-jose-json-web-encryption-11

*        http://tools.ietf.org/html/draft-ietf-jose-json-web-key-11

*        http://tools.ietf.org/html/draft-ietf-jose-json-web-algorithms-11

*        http://tools.ietf.org/html/draft-ietf-oauth-json-web-token-08

HTML formatted versions are available at:

*        http://self-issued.info/docs/draft-ietf-jose-json-web-signature-11.html

*        http://self-issued.info/docs/draft-ietf-jose-json-web-encryption-11.html

*        http://self-issued.info/docs/draft-ietf-jose-json-web-key-11.html

*        http://self-issued.info/docs/draft-ietf-jose-json-web-algorithms-11.html

*        http://self-issued.info/docs/draft-ietf-oauth-json-web-token-08.html

                                                            -- Mike

P.S.  This announcement was also posted at http://self-issued.info/?p=1031.

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openid.net/pipermail/openid-specs-ab/attachments/20130528/e53b8312/attachment.html>


More information about the Openid-specs-ab mailing list