Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Key redundancy in DPoP method #111

Closed
jricher opened this issue Nov 13, 2020 · 3 comments
Closed

Key redundancy in DPoP method #111

jricher opened this issue Nov 13, 2020 · 3 comments

Comments

@jricher
Copy link
Collaborator

jricher commented Nov 13, 2020

§8.4 Demonstration of Proof-of-Possession (DPoP): Editor's note:

This method requires duplication of the key in the header and the request body, which is redundant and potentially awkward.
@davidgtonge
Copy link

I agree that this is tricky. I think that an extension to DPoP which supports http signing may need to allow a key to be passed by reference rather than by value.

@fimbault
Copy link
Collaborator

fimbault commented Dec 2, 2020

This is the nature of DPoP proof mechanism as it is today. No specific action to be done.
Might need review #7 and #15 also.

@fimbault fimbault added the Pending Close Issue will be closed unless there are changes to consensus label Dec 2, 2020
@aaronpk aaronpk closed this as completed Dec 16, 2020
@aaronpk aaronpk removed the Pending Close Issue will be closed unless there are changes to consensus label Dec 16, 2020
@davidgtonge
Copy link

I'm ok for this to be closed for now, but #15 needs a lot of discussion - I suggest this ticket is closed but a link posted in #15

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
4 participants
@aaronpk @jricher @davidgtonge @fimbault