Re: [w3c/webpayments-crypto] Required or recommended encryption algorithms (#2) from Peter Saint-Andre on 2018-03-08 (public-webpayments-specs@w3.org from March 2018)

From: Peter Saint-Andre <notifications@github.com>
Date: Thu, 08 Mar 2018 01:53:17 +0000 (UTC)
To: w3c/webpayments-crypto <webpayments-crypto@noreply.github.com>
Cc: Subscribed <subscribed@noreply.github.com>
Message-ID: <w3c/webpayments-crypto/issues/2/371350834@github.com>

Given that the proposal uses JWE, it seems best to use the "recommended+" algorithms from Section 4.1 of RFC 7518, such as RSA-OAEP for encryption of the Content Encryption Key (CEK) and ECDH-ES for encryption of the content itself.

-- 
You are receiving this because you are subscribed to this thread.
Reply to this email directly or view it on GitHub:
https://github.com/w3c/webpayments-crypto/issues/2#issuecomment-371350834

Received on Thursday, 8 March 2018 01:53:48 UTC