-----------------
>>> *Von:* Anthony Scarpino >> <mailto:anthony.scarp...@oracle.com>>
>>> *Gesendet:* Monday, Mar
t;
*Cc:* Bernd Eckenfels mailto:e...@zusammenkunft.net>>;
security-dev@openjdk.java.net <mailto:security-dev@openjdk.java.net> mailto:security-dev@openjdk.java.net>>
*Betreff:* Re: [Internet]Re: "Pluggable" key serialization in JCE/JCA
Thanks for all the info. We don’t have expe
ers Rundgren
mailto:anders.rundgren@gmail.com>>
Cc: Bernd Eckenfels mailto:e...@zusammenkunft.net>>;
security-dev@openjdk.java.net<mailto:security-dev@openjdk.java.net>
mailto:security-dev@openjdk.java.net>>
Betreff: Re: [Internet]Re: "Pluggable" key serialization
enfels.net
*Von:* Anthony Scarpino
*Gesendet:* Monday, March 28, 2022 6:31:29 AM
*An:* Anders Rundgren
*Cc:* Bernd Eckenfels ;
security-dev@openjdk.java.net
*Betreff:* Re: [Internet]Re: "Pluggable" key serialization in JCE/JCA
Thanks for all the
://bernd.eckenfels.net
Von: Anthony Scarpino
Gesendet: Monday, March 28, 2022 6:31:29 AM
An: Anders Rundgren
Cc: Bernd Eckenfels ; security-dev@openjdk.java.net
Betreff: Re: [Internet]Re: "Pluggable" key serialization in JCE/JCA
Thanks for all the info. We
Thanks for all the info. We don’t have experience with JOSE or COSE, I think we
need to digest some of this data before making a future step
Not knowing this technology until you brought it up a few days ago, a few
questions i have are how is this used and how common? Would I see this used
On 2022-03-26 23:14, Bernd Eckenfels wrote:
Just for completeness, the standard for key transport in JOSE is JWK (RFC7517).
In COSE it is a COSE_Key(Set) as defined in RFC8152 sect13.
BTW the most widely used CBOR/COSE application are probably the QR codes around
Covid and Vaccination
://bernd.eckenfels.net
Von: security-dev im Auftrag von Michael
StJohns
Gesendet: Samstag, März 26, 2022 10:29 PM
An: security-dev@openjdk.java.net
Betreff: Re: [Internet]Re: "Pluggable" key serialization in JCE/JCA
On 3/26/2022 11:05 AM, xueleifan(XueleiFan) w
On 3/26/2022 11:05 AM, xueleifan(XueleiFan) wrote:
Hi Anders,
I would like to have look at the COSE/JOSE specs. If it is convenient to you,
any suggestions about where I could start from? RFC 8812? Do you know where
(areas and products) the COSE/JOSE specs are used in practice?
Thanks,
On 2022-03-26 16:05, xueleifan(XueleiFan) wrote:
Hi Anders,
I would like to have look at the COSE/JOSE specs. If it is convenient to you,
any suggestions about where I could start from? RFC 8812? Do you know where
(areas and products) the COSE/JOSE specs are used in practice?
Hi Xuelei,
Hi Anders,
I would like to have look at the COSE/JOSE specs. If it is convenient to you,
any suggestions about where I could start from? RFC 8812? Do you know where
(areas and products) the COSE/JOSE specs are used in practice?
Thanks,
Xuelei
> On Mar 25, 2022, at 11:56 AM, Anders Rundgren
Hi Michael & the JDK crypto team,
Although it might be cool writing a JEP it is not really my job. There are
also multiple ways of addressing this issue.
BTW, the COSE/JOSE folks who are about to introduce new algorithms want to
overload RFC 8037 which defines a key type OKP.
I'm not in
Hi Michael & the JDK crypto team,
Although it might be cool writing a JEP it is not really my job. There are
also multiple ways of addressing this issue.
BTW, the COSE/JOSE folks who are about to introduce new algorithms want to
overload RFC 8037 which defines a key type OKP.
I'm not in
On 3/25/2022 12:33 PM, Anders Rundgren wrote:
On 2022-03-25 17:12, Anthony Scarpino wrote:
When you say "construct and EC key", do you mean creating an EC key from
an existing set of values via PKCS8 or X509 encoding? Or are you
talking about EC key generation?
I was talking about creating
On 2022-03-25 17:12, Anthony Scarpino wrote:
When you say "construct and EC key", do you mean creating an EC key from
an existing set of values via PKCS8 or X509 encoding? Or are you
talking about EC key generation?
I was talking about creating keys from parameter data supplied by for example
On 3/25/2022 12:07 PM, Michael StJohns wrote:
AFAIK, there is still no support for using named curves to construct
an EC key. Names curves are MANDATORY in JOSE/CODE.
Use AlgorithmParameterGenerator with ECGenParameterSpec. Works like a
charm.
Sorry - Got that slightly wrong. Use this
When you say "construct and EC key", do you mean creating an EC key from
an existing set of values via PKCS8 or X509 encoding? Or are you
talking about EC key generation?
Tony
On 3/25/22 1:03 AM, Anders Rundgren wrote:
Hi Mike & the JDK crypto team,
What I'm saying is that key
On 3/25/2022 4:03 AM, Anders Rundgren wrote:
Hi Mike & the JDK crypto team,
What I'm saying is that key serialization in Java haven't gotten
enough attention. Examples:
AFAIK, there is still no support for using named curves to construct
an EC key. Names curves are MANDATORY in JOSE/CODE.
Hi Mike & the JDK crypto team,
What I'm saying is that key serialization in Java haven't gotten enough
attention. Examples:
AFAIK, there is still no support for using named curves to construct an EC key.
Names curves are MANDATORY in JOSE/CODE.
The gap between EdDSA keys as expressed in
On 3/24/2022 12:28 PM, Anders Rundgren wrote:
On 2022-03-24 16:59, Michael StJohns wrote:
On 3/24/2022 2:46 AM, Anders Rundgren wrote:
Hi List,
I find it a bit strange that every user of crypto either have to write
or install specific software for converting JOSE/COSE/PEM keys
back-and-forth
On 2022-03-24 17:27, xueleifan(XueleiFan) wrote:
On Mar 23, 2022, at 11:46 PM, Anders Rundgren
wrote:
Hi List,
I find it a bit strange that every user of crypto either have to write or
install specific software for converting JOSE/COSE/PEM keys back-and-forth to
Java's internal
On 2022-03-24 16:59, Michael StJohns wrote:
On 3/24/2022 2:46 AM, Anders Rundgren wrote:
Hi List,
I find it a bit strange that every user of crypto either have to write
or install specific software for converting JOSE/COSE/PEM keys
back-and-forth to Java's internal representation. This reduces
> On Mar 23, 2022, at 11:46 PM, Anders Rundgren
> wrote:
>
> Hi List,
>
> I find it a bit strange that every user of crypto either have to write or
> install specific software for converting JOSE/COSE/PEM keys back-and-forth to
> Java's internal representation. This reduces the value of the
On 3/24/2022 2:46 AM, Anders Rundgren wrote:
Hi List,
I find it a bit strange that every user of crypto either have to write
or install specific software for converting JOSE/COSE/PEM keys
back-and-forth to Java's internal representation. This reduces the
value of the abstract types as well.
Hi List,
I find it a bit strange that every user of crypto either have to write or
install specific software for converting JOSE/COSE/PEM keys back-and-forth to
Java's internal representation. This reduces the value of the abstract types as
well.
Now there is whole bunch of new algorithms
25 matches
Mail list logo
