JSON Object Signing and Encryption (JOSE) -15 drafts have been published that address 37 editorial and minor issues filed by Jim Schaad. See the Document History sections for lists of the specific issues addressed. Thanks to Jim for meeting with me in person to go over proposed text changes in my working drafts before these specifications were published. We also agreed on a number of additional proposed resolutions that will be addressed in the next set of drafts published.
The one substantive change worth noting is that when multiple signatures or encryption recipients are present, it is now up to the application whether to reject the entire JWS or JWE when some, but not all of the signature or encryption validations fail. (Previously, if any validation failed, the entire JWS or JWE was always rejected.) The drafts are available at: * http://tools.ietf.org/html/draft-ietf-jose-json-web-signature-15 * http://tools.ietf.org/html/draft-ietf-jose-json-web-encryption-15 * http://tools.ietf.org/html/draft-ietf-jose-json-web-key-15 * http://tools.ietf.org/html/draft-ietf-jose-json-web-algorithms-15 HTML formatted versions are also available at: * http://self-issued.info/docs/draft-ietf-jose-json-web-signature-15.html * http://self-issued.info/docs/draft-ietf-jose-json-web-encryption-15.html * http://self-issued.info/docs/draft-ietf-jose-json-web-key-15.html * http://self-issued.info/docs/draft-ietf-jose-json-web-algorithms-15.html -- Mike
_______________________________________________ jose mailing list [email protected] https://www.ietf.org/mailman/listinfo/jose
