This is a topic that has been discussed some off-list between myself, Mike Jones, John Bradley, and Nat Sakimura.
For XMPP E2E, there is a need to disseminate a "session" master (symmetric) key between the sender and recipients as a wrapped key. To date, this is done in a very custom manner by encrypting the session key with the recipient's public key, and packaging as a partial (read: broken) JWE value. Ideally, I would like a nice way of handling wrapped keys in JWE. The more standardized alternatives I can see are: * Follow JWE, using the session key for both the content key and the content plaintext (feels very awkward) * Follow JWE, generating yet-another-CMK and using the session key as the content plaintext (feels very wasteful) Does anyone else think this is worth supporting? - m&m Matt Miller < [email protected] > Cisco Systems, Inc. PS: JSMS supports wrapped keys, as does CMS.
smime.p7s
Description: S/MIME cryptographic signature
_______________________________________________ jose mailing list [email protected] https://www.ietf.org/mailman/listinfo/jose
