Breaking News: Grepper is joining You.com. Read the official announcement!
Check it out

non repudiation with self issued and nested JWTs

Add Answer
Pragya Keshap answered on February 7, 2023 Popularity 1/10 Helpfulness 1/10

Contents

  • answer non repudiation with self issued and nested JWTs

    • More Related Answers


    non repudiation with self issued and nested JWTs

    Comment
    0

    A signed JWT/JWS object can be additionally encrypted, thus providing integrity, authenticity, non-repudiation and confidentiality to data.

    The JWT is signed with a private RSA or EC key.

    The signed JWT then becomes the payload (plaintext) of a JWE object, which is encrypted with either the public key (RSA or EC) of the recipient, or with a secret key that has been shared between the two parties.

    Processing a nested JWT works backwards:

    The JWE object is decrypted with the appropriate key (private key for RSA or EC, or established secret key).

    The extracted payload (plain text) is then parsed as a signed JWT, and verified with the issuer’s public key (RSA or EC).

    https://www.linkedin.com/pulse/beneffits-jwtjwsjwe-api-designs-wagner-brunca/

    Popularity 1/10 Helpfulness 1/10 Language java
    Source: Grepper
    Tags: java nested self
    Link to this answer
    Share Copy Link
    Pragya Keshap
    Contributed on Feb 07 2023
    Pragya Keshap
    0 Answers  Avg Quality 2/10

    X

    Continue with Google

    By continuing, I agree that I have read and agree to Greppers's Terms of Service and Privacy Policy.
    X
    Grepper Account Login Required

    Oops, You will need to install Grepper and log-in to perform this action.