Greetings fellow OAUTH WG mail list subscribers, It is with great pleasure that I announce the recent publication of the -09 draft of the SD-JWT document. The usual datatracker, etc. links are below along with a quick summary of the changes in this revision (copied from the document history).
I know I've said or suggested on several occasions that the document content is stabilizing and that we might be approaching the end of this phase of the work. But along those lines I do believe it's notable that there is only one issue currently open in the repository and it has an open PR addressing it (which needs a little care and feeding but seems directionally correct and is editorial/exploratory in nature). -09 - Distinguished SD-JWT from SD-JWT+KB - Provide ABNF for the SD-JWT, SD-JWT+KB, and various constituent parts - New structure for JSON-serialized SD-JWTs/KB-JWTs to better align with JAdES. - Attempt to better explain how salt in the Disclosure makes guessing the preimage of the digest infeasible - Consolidate salt entropy and length security consideration subsections - Unnumbered most of the examples for improved clarity - More definitive language around the exclusive use of the cnf claim for enabling Key Binding ---------- Forwarded message --------- From: <internet-dra...@ietf.org> Date: Thu, Jun 13, 2024 at 11:13 AM Subject: New Version Notification for draft-ietf-oauth-selective-disclosure-jwt-09.txt To: "...", "...", "..." A new version of Internet-Draft draft-ietf-oauth-selective-disclosure-jwt-09.txt has been successfully submitted by Daniel Fett and posted to the IETF repository. Name: draft-ietf-oauth-selective-disclosure-jwt Revision: 09 Title: Selective Disclosure for JWTs (SD-JWT) Date: 2024-06-13 Group: oauth Pages: 89 URL: https://www.ietf.org/archive/id/draft-ietf-oauth-selective-disclosure-jwt-09.txt Status: https://datatracker.ietf.org/doc/draft-ietf-oauth-selective-disclosure-jwt/ HTML: https://www.ietf.org/archive/id/draft-ietf-oauth-selective-disclosure-jwt-09.html HTMLized: https://datatracker.ietf.org/doc/html/draft-ietf-oauth-selective-disclosure-jwt Diff: https://author-tools.ietf.org/iddiff ?url2=draft-ietf-oauth-selective-disclosure-jwt-09 Abstract: This specification defines a mechanism for selective disclosure of individual elements of a JSON object used as the payload of a JSON Web Signature (JWS) structure. It encompasses various applications, including but not limited to the selective disclosure of JSON Web Token (JWT) claims. The IETF Secretariat -- _CONFIDENTIALITY NOTICE: This email may contain confidential and privileged material for the sole use of the intended recipient(s). Any review, use, distribution or disclosure by others is strictly prohibited. If you have received this communication in error, please notify the sender immediately by e-mail and delete the message and any file attachments from your computer. Thank you._
_______________________________________________ OAuth mailing list -- oauth@ietf.org To unsubscribe send an email to oauth-le...@ietf.org
