- From: Cantor, Scott <cantor.2@osu.edu>
- Date: Mon, 27 Feb 2012 19:36:44 +0000
- To: "public-xmlsec@w3.org (public-xmlsec@w3.org)" <public-xmlsec@w3.org>
I checked with JohnB about JOSE and JWT plans, and the impression I have is that they have goals involving combining encryption and sender authentication/verification in one layer that I don't think are a fit for XML Encryption, which keeps the authentication of a message separate from any use of integrity protection in the data cipher. There are also format and message size considerations that aren't applicable to this spec. I think it's unlikely we'd end up with the same algorithm and ciphertext layout in both places, so trying to quickly get consensus on a single approach isn't likely and shouldn't hold up a decision about 1.1. I would expect that decision therefore to be that if I/we want to do a separate document to describe a new algorithm for HMAC+CBC along the lines of the CMS RFC, that's the way forward, without holding up 1.1. But again I will note that formal compliance with AES-GCM as MTI will be effectively very limited to vendors and Java tools (and many of those Java stacks have to interop with people using other toolkits, so actual wire interop will be left at CBC). It might also be instructive for somebody to investigate the "crypto in the browser" work going on in W3C. -- Scott
Received on Monday, 27 February 2012 19:37:25 UTC