JCA design for RFC 7748
Anders Rundgren
anders.rundgren.net at gmail.com
Tue Aug 8 15:45:59 UTC 2017
On 2017-08-08 17:25, Adam Petcher wrote:
> It sounds like what you are saying is
> that I will need something like XDHPublicKey and XDHPrivateKey in
> java.security.interfaces. Can you tell me why? What is it that we can't
> do without these interfaces?
Every JOSE Java library I have seen constructs and deconstructs RSA and EC keys
based on JWK definitions. Maybe we don't need XDH keys but it would be nice to
hear what the solution would be without such.
Then there's lot of stuff out there like this which also needs some
explanations on how to enhance with RFC7748 on board:
Object myOwnEncrypt(PublicKey publicKey) throws SecurityException {
if (publicKey instanceof RSAKey) {
// RSA
} else {
// It should be EC
}
}
CC:ing the creator of OKP keys.
https://tools.ietf.org/html/rfc8037#section-2
Anders
More information about the security-dev
mailing list