I implemented a msgpack serialization in PyJOSE in literally ten lines of code. https://github.com/bifurcation/pyjose/blob/master/jose/serialize.py#L183
Of course, you still have to have a JSON parser if you want to support protected attributes. Otherwise, it's completely trivial -- the text fields are text fields, and the binary fields are binary fields. But of course, there is no coherent use case for protected attributes (vs. adding things to the payload), so it doesn't seem like it would be super painful just to omit protected attributes from an implementation. Sure is a shame that we baked in a JSON dependency, isn't it? --Richard On Sat, Jul 5, 2014 at 4:27 AM, Carsten Bormann <[email protected]> wrote: > On 05 Jul 2014, at 01:26, John Mattsson <[email protected]> > wrote: > > > Is anyone aware of any work on securing binary JSON? > > CBOR certainly was designed with the knowledge that JOSE was going to be > available. > Preliminary analysis indicated that an adaptation of JOSE to CBOR should > be possible with a limited amount of work. > So our plan here at TZI is to contribute to that work as soon as the work > on JOSE is completed. > > Maybe we can have a short hallway meeting in Toronto between people > interested in this space. > > Grüße, Carsten > > (I’m not particularly fond of calling CBOR a “binary JSON”, but I read > this usage here as a shorthand for “a binary-capable representation format > in the spirit of the JSON data model”, which CBOR is.) > > _______________________________________________ > jose mailing list > [email protected] > https://www.ietf.org/mailman/listinfo/jose >
_______________________________________________ jose mailing list [email protected] https://www.ietf.org/mailman/listinfo/jose
