#19: JWA needs to specify an IV for use with JWE AES Key Wrap
Comment (by [email protected]): It turns out that RFC 5649 is actually unambiguous about this: """ [If the input is not exactly 8 bytes long...] Otherwise, apply the wrapping process specified in Section 2.2.1 of [AES-KW2] to the padded plaintext {P[1], ..., P[n]} with K (the KEK) and the AIV as defined in Section 3 above as the initial value. """ So it seems like there's a third course of action here, namely: (c) Upgrade the reference to RFC 3394 to reference RFC 5649 instead. That would also allow us to process inputs that are not 64-bit aligned. -- -------------------------+------------------------------------------------- Reporter: | Owner: draft-ietf-jose-json-web- [email protected] | [email protected] Type: defect | Status: new Priority: minor | Milestone: Component: json-web- | Version: algorithms | Resolution: Severity: - | Keywords: | -------------------------+------------------------------------------------- Ticket URL: <http://trac.tools.ietf.org/wg/jose/trac/ticket/19#comment:1> jose <http://tools.ietf.org/jose/> _______________________________________________ jose mailing list [email protected] https://www.ietf.org/mailman/listinfo/jose
