W3C home > Mailing lists > Public > ietf-http-wg@w3.org > July to September 2021

Re: MACs and Signatures (was Re: draft-ietf-httpbis-message-signatures-05)

From: Nikos Fotiou <fotiou@aueb.gr>
Date: Thu, 15 Jul 2021 16:32:37 +0300
Message-Id: <DB17577F-B226-44F5-96FC-6A0991D66CB2@aueb.gr>
Cc: Justin Richer <jricher@mit.edu>, Christopher Langton <chris@langton.cloud>, "public-credentials@w3.org" <public-credentials@w3.org>, HTTP Working Group <ietf-http-wg@w3.org>
To: Watson Ladd <watsonbladd@gmail.com>

A minor comment

> On 14 Jul 2021, at 11:19 PM, Watson Ladd <watsonbladd@gmail.com> wrote:
> 
> Which applications, what kind of switching? If it's identifying the
> key in the signed data, that can be done, but the algorithm must
> travel with the key, not the message. Why is indicating the algorithm
> in the signed data necessary? Could you please provide examples of
> applications that need it?

With MAC no key is sent. So you need somehow to indicate the MAC algorithm. 
Received on Thursday, 15 July 2021 13:33:01 UTC

This archive was generated by hypermail 2.4.0 : Thursday, 15 July 2021 13:33:02 UTC