Skip to content

Add specific requirements for response encryption #155

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 4 commits into from
Jan 17, 2025
Merged

Add specific requirements for response encryption #155

merged 4 commits into from
Jan 17, 2025

Conversation

@bc-pi
Copy link
Member

@bc-pi bc-pi commented Jan 10, 2025
edited
Loading

Sakurann
Sakurann reviewed Jan 14, 2025
View reviewed changes
c2bo
c2bo reviewed Jan 14, 2025
View reviewed changes
awoie
awoie reviewed Jan 14, 2025
View reviewed changes
bc-pi
bc-pi commented Jan 16, 2025
View reviewed changes
paulbastian
paulbastian approved these changes Jan 17, 2025
View reviewed changes
Copy link
Collaborator

@paulbastian paulbastian left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Approved with the outstanding suggestion

c2bo
c2bo approved these changes Jan 17, 2025
View reviewed changes
Copy link
Member

@c2bo c2bo left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Approved if the re-wording of the MTI encryption algorithm section by Brian is accepted

@Sakurann @bc-pi
change MTI language
6b6c1a3 
Co-authored-by: Brian Campbell <71398439+bc-pi@users.noreply.github.com>
danielfett
danielfett reviewed Jan 17, 2025
View reviewed changes
openid4vc-high-assurance-interoperability-profile-1_0.md
Comment on lines +233 to +235
* Response encryption MUST be performed as specified in [@!OIDF.OID4VP, section 7.3]. The JWE `alg` (algorithm) header parameter (see [@!RFC7516, section 4.1.1])
value `ECDH-ES` (as defined in [@!RFC7518, section 4.6]), with key agreement utilizing keys on the `P-256` curve (see [@!RFC7518, section 6.2.1.1]) MUST be supported.
The JWE `enc` (encryption algorithm) header parameter (see [@!RFC7516, section 4.1.2]) value `A128GCM` (as defined in [@!RFC7518, section 5.3]) MUST be supported.
Copy link

@danielfett danielfett Jan 17, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Uppercase "Section"?

Copy link
Member Author

@bc-pi bc-pi Jan 17, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

It self capitalizes somewhere in the tool chain https://openid.github.io/oid4vc-haip/openid4vc-high-assurance-interoperability-profile-wg-draft.html#section-6-2.4

@Sakurann Sakurann merged commit d328a95 into main Jan 17, 2025
2 checks passed
Sakurann pushed a commit that referenced this pull request Jan 28, 2025
@bc-pi
Add specific requirements for response encryption (#155)
6fd3679 
5 approvals. open for a week. executes WG agreement
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@danielfett danielfett danielfett approved these changes

@c2bo c2bo c2bo approved these changes

@paulbastian paulbastian paulbastian approved these changes

@awoie awoie awoie approved these changes

@Sakurann Sakurann Sakurann approved these changes

@jogu jogu Awaiting requested review from jogu

@selfissued selfissued Awaiting requested review from selfissued

@leecam leecam Awaiting requested review from leecam

Assignees

No one assigned

Labels

ISO_VirtualMeeting

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

8 participants

@bc-pi @danielfett @c2bo @paulbastian @awoie @Sakurann @tlodderstedt