Going forward, the argument that SPKI is not easily obtainable is not going to be a valid argument in browsers. The new WebCrypto API supplies that need. So this is just an argument about current browsers (well current IE) and non- browser platforms
Jim > -----Original Message----- > From: Stephen Farrell [mailto:[email protected]] > Sent: Sunday, March 01, 2015 10:50 PM > To: Jim Schaad; [email protected] > Subject: Re: [jose] Last Call on draft-ietf-jose-jwk-thumbprint - Round 2 > > > > On 02/03/15 05:49, Jim Schaad wrote: > > The previous discussion on the serialization did not reach a consensus > > either to keep or change serialization string method. Given this the > > decision to keep the previous one is a conservative decision. If people > > want to re-litigate this issue and try to come to a consensus this is > > the time to do it. > > Other hashed-public-key things all use SPKI as the input. Doing something > different is IMO a bad plan for zero benefit. The benefit of doing the same as > others is that one can use the same value to refer to the same key in > different contexts. With the current approach, one cannot. > > S. _______________________________________________ jose mailing list [email protected] https://www.ietf.org/mailman/listinfo/jose
