Questions tagged [jwe]

JSON Web Encryption (JWE; RFC 7516) represents encrypted content using JSON-based data structures.

JSON Web Encryption (JWE) [RFC7516] represents encrypted content using JSON- based data structures [RFC7159]. The JWE cryptographic mechanisms encrypt and provide integrity protection for an arbitrary sequence of octets.

Two closely related serializations for JWEs are defined. The JWE Compact Serialization is a compact, URL-safe representation intended for space constrained environments such as HTTP Authorization headers and URI query parameters. The JWE JSON Serialization represents JWEs as JSON objects and enables the same content to be encrypted to multiple parties. Both share the same cryptographic underpinnings.

Cryptographic algorithms and identifiers for use with this specification are described in the separate JSON Web Algorithms (JWA) [JWA] specification and IANA registries defined by that specification. Related digital signature and MAC capabilities are described in the separate JSON Web Signature (JWS) [JWS] specification.

Names defined by this specification are short because a core goal is for the resulting representations to be compact.

156 questions

votes

1 answer

oauth_token and oauth_token_secret in a jwt

quick question - using twitter's oauth, I'm given an oauth_token and oauth_token_secret to validate users. I know I can store this encrpyted in a database for safekeeping, but is it a bad idea to simply sick them in an encrpted jwt (jwe)? Thanks

asked Feb 24 '16 at 16:11

Tucker

7,017
9
37
55

votes

2 answers

No need HTTPS if i am going to use JOSE(JWT&JWE)?

I am recentlly finding a solution of Web Security, As far as i known the HTTPS will bring more security web, but i found another Security solution of JOSE(JWT&JWE) so i want to known, i use it in the future, can i just use HTTP only but without…

https jwt jwe

asked Oct 08 '15 at 01:37

Kris

votes

1 answer

Decrypt Content Encryption Key in JSON Web Encryption

I am using OpenSSL RSA1_5 for decrypting the CEK (Content Encryption Key). My aim is to decrypt the JWK (JSON Web Key) by which I will be getting CEK, so by using CEK I can decrypt my ciphertext which is actually the encrypted data. After using…

java encryption jwe

asked Mar 27 '14 at 06:16

Vasu Dev

-1

votes

0 answers

Is there a System.IdentityModel.Tokens.Jwt; solution to Jose.JWT.Decode(JwtTokenAsAString, RSA.ImportPkcs8PrivateKey)?

I have working code to decrypt a JWE encrypted Token payload in Jose.JWT, where the encrypted ciphertext is done using a PKCS 8 public key and the private key is in PEM format. But cannot find any working examples for…

c# jwt decode jwe

asked Aug 31 '23 at 00:37

Adam Williams

-1

votes

1 answer

Class 'phpseclib\Crypt\Random' not found

I want to do JWE in php. I've installed gree/jose library and also phpseclib via composer. But, why I'm keep getting error below? Fatal error: Class 'phpseclib\Crypt\Random' not found…

php phpseclib jwe

asked Feb 07 '21 at 14:13

Muhammad Firdaus

-1

votes

1 answer

JSON web encryption using cjsoe

Any help please on how to use the cjose library with a simple JSON. JSON example from the ietf-jose Can someone give me some indications? thanks

c encryption jwe

asked Mar 29 '18 at 22:14

samir

4,501
6
49
76

Prev 1 2 3

…