Mike,
> (a) Define “alg”:”dir” (direct) to mean that the
> symmetric key is directly used as the CMK for
> the block encryption and integrity calculations,
> rather than as a key to wrap the CMK value.
> Do you have an alternative syntax proposal to "alg":"dir"
> for expressing direct symmetric encryption,
> since apparently you don’t like that syntax?
> Several others have said that it would work for them…
The current JWS/JWE model puts the "primary" algorithm in the "alg" field. You
determine how to process the message by determining what sort of algorithm the
"alg" value is.
With this model, direct encryption with a pre-established symmetric key should
put the AEAD algorithm in the "alg" field. That is, rename the "enc" field to
"alg" when doing encryption directly with a pre-established symmetric key.
Example: {"alg":"A256GCM", …}
I think it would be better to have a dedicated field (eg "t") to specify the
mode (eg "t":"sig" for with a digitally signed message). For direct symmetric
encryption define a new mode value, eg "t":"enc".
Example: {"t:"enc", "enc":"A256GCM", …}
--
James Manger
_______________________________________________
jose mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/jose
