On Tue, Dec 19, 2017 at 12:23:12PM +0100, Sophie Herold wrote:
> Hi,
>
> I found those two statements contradictory. R and S should be part of
> the JWK object if I am not mistaken. Can someone point me to the
> relevant statement in RFC 7518?
No, R and S are not part of JWK object. They are part of ECDSA
signature.
The public JWK fields include crv, e, kty, n, x and y (not all present
at once).
> ACME-09
>
> > As noted in JWA {{!RFC7518}} any prepended
> > zero octets in the fields of a JWK object MUST be stripped before
> > doing the computation.
This is about JWKs, which are keys.
> RFC 7518
>
> > 2. Turn R and S into octet sequences in big-endian order, with each
> > array being be 32 octets long. The octet sequence
> > representations MUST NOT be shortened to omit any leading zero
> > octets contained in the values.
This is about ECDSA signatures.
So one is talking about keys, the other about signatures, so there is
no contradiction.
-Ilari
_______________________________________________
Acme mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/acme
