On 22. Jul 2021, at 18:01, Toerless Eckert <[email protected]> wrote: > > As far as i could find, none of the examples > in appendix C nor in https://github.com/cose-wg/Examples do have > the "content type" (3:) field with a value and none seem to elaborate > about different type of payloads.
I won’t try to answer the whole question, but let’s just look at one example: The European Digital Green Card (Covid pass) uses a CWT with claim -260. Given that the claim -260 is registered in the CWT registry [1], there is no need to provide any other semantics with the signed object. Similar with the FIDO entries there. If you do not use a CWT, you may want some other form of identification of what the payload is about, and the COSE content-type header parameter (3) is one of them. Grüße, Carsten [1]: https://www.iana.org/assignments/cwt/cwt.xhtml Scroll down to hcert _______________________________________________ COSE mailing list [email protected] https://www.ietf.org/mailman/listinfo/cose
