On Sat, Mar 07, 2026 at 12:04:07PM -0600, Orie wrote:
> I meant in the sense that if you see an AKP inside a CWT / COSE Sign1, the
> algorithm on the key would be signed over.
> The AKP thumbprint for a COSE Key also includes the algorithm.
>
> Hypothetical Hybrid:
>
> { /CCS/
> 2 : "42-50-31-FF-EF-37-32-39", /sub/
> 8 : { /cnf/
> 1 : { /COSE_Key/
> 1 : 1, /kty AKP/
> 2 : h'00', /kid/
> *3 : e'X-WING', /alg X-WING/*
> -1 : h'b1a3e89...980d2db83a' /public key/
> }
> }
> }
What is that "X-Wing"?
- If it is COSE Direct Key Agreement, it is not what LAKE uses (as LAKE
would use raw X-Wing).
- If it is something else, it makes no sense in COSE, except as reserved
codepoint (which COSE does not currently have, but JOSE does).
And using reserved codepoints in AKP seems rather dubious.
-Ilari
_______________________________________________
COSE mailing list -- [email protected]
To unsubscribe send an email to [email protected]
