Questions tagged [jwe]

JSON Web Encryption (JWE; RFC 7516) represents encrypted content using JSON-based data structures.

JSON Web Encryption (JWE) [RFC7516] represents encrypted content using JSON- based data structures [RFC7159]. The JWE cryptographic mechanisms encrypt and provide integrity protection for an arbitrary sequence of octets.

Two closely related serializations for JWEs are defined. The JWE Compact Serialization is a compact, URL-safe representation intended for space constrained environments such as HTTP Authorization headers and URI query parameters. The JWE JSON Serialization represents JWEs as JSON objects and enables the same content to be encrypted to multiple parties. Both share the same cryptographic underpinnings.

Cryptographic algorithms and identifiers for use with this specification are described in the separate JSON Web Algorithms (JWA) [JWA] specification and IANA registries defined by that specification. Related digital signature and MAC capabilities are described in the separate JSON Web Signature (JWS) [JWS] specification.

Names defined by this specification are short because a core goal is for the resulting representations to be compact.

156 questions

votes

3 answers

Implement Diffie-Hellman key exchange in Java

I am trying to implement Diffie-Hellman key exchange in Java, but I'm having a hard time understanding the specification: Complete the Diffie-Hellman key exchange process as a local mechanism according to JWA (RFC 7518) in Direct Key Agreement mode…

asked Sep 14 '17 at 15:59

Noureddine AMRI

2,942
1
21
28

votes

3 answers

JWT encrypting payload in python? (JWE)

According to RFC 7516 it should be possible to encrypt the payload/claim, called JWE. Are there any python libraries out there that support that? I've checked PyJWT, python-jose and jwcrypto but they all just have examples for signing with HS256…

python jwt jwe pyjwt python-jose

asked Aug 26 '16 at 09:30

Johnny

votes

3 answers

Implementing JSON Web Encryption in Node.js

I'm looking for a way to use JSON Web Encryption (JWE) in a Node.js service. I have however only managed to find implementations of the related standard JWS. There are however several libraries for other languages, such as jose4j. Did anyone…

javascript node.js encryption cryptography jwe

asked Mar 25 '15 at 14:50

JHH

8,567
8
47
91

votes

1 answer

What is the difference between JOSE, JWA, JWE, JWK, JWS and JWT?

What is the difference between JOSE, JWA, JWE, JWK, JWS and JWT and how are they related to one another?

jwt jwk jwe jose

asked Oct 30 '22 at 23:55

Marco

5,555
2
17
23

votes

3 answers

RSA Encryption function in Swift 4 from Public Key string

My ultimate goal is to create a JWE string, given a public key for iOS. To make things easier for myself, I've broken down my steps so most pressingly, I need to create an encrypted key using RSA encryption from a secret key and public key…

swift encryption jwt rsa jwe

asked Jun 28 '19 at 11:59

clientside-gem

votes

2 answers

Combining JWE and JWS

Just learning about JOSE and I understand that JWE is for encryption and JWS is for signing. What I don't seem to be able to find examples of is a payload that is both encrypted and signed. Let's pretend I have a payload hello world. Is the correct…

json encryption jwt jwe jose

asked Oct 11 '18 at 08:17

aroooo

4,726
8
47
81

votes

2 answers

How to decode JWE token in Angular

I have this problem, I created a JWE in .net core using EncryptingCredentials by this way: var key = Encoding.ASCII.GetBytes(Configuration["Core:JwtSecret"]); var encryptionkey = Encoding.ASCII.GetBytes(Configuration["Core:JwtEncrype"]); var…

c# angular .net-core jwt jwe

asked Jan 06 '21 at 17:22

Mostafa Azarirad

votes

1 answer

how to generate encrypted JWE with node-jose

I'm using node-jose v0.11.0 (https://www.npmjs.com/package/node-jose) for JWK and JWE operations. I have an RSA key in JWK format that I can load into a JWK key store and also extract again. However, when I try to encrypt anything, I get into the…

node.js encryption jwt jwe jwk

asked Feb 07 '18 at 09:14

Ollyblink

votes

1 answer

How to add expiry to JWE token?

I'm using Jose library to create JWE's. I have successfully managed to create and parse JWE. JWT has fields like exp, iat which help in invalidating token after a certain period of time.How can I set expiry on JWE ? Here's what I've tried, without…

go jwe

asked Feb 05 '19 at 13:42

Ankit Deshpande

3,476
1
29
42

votes

1 answer

What is the mime type to use for JSON Web Encryption

Looking at RFC 7515 and RFC 7516, I was trying to understand what the proper mime type for the JWE should be. It looks like JWE and JWS share the JOSE header information, and JWS defines its mime type as application/jose. JWE has no explicit media…

json mime-types rfc jwe

asked Mar 29 '17 at 18:01

Pawel Veselov

3,996
7
44
62

votes

1 answer

JWE in Spring Security OAuth2 JWT

Is it possible to use JSON Web Encryption(JWE) with Spring Security OAuth2 JWT ? Right now I have a following JwtAccessTokenConverter: @Bean public JwtAccessTokenConverter accessTokenConverter() { JwtAccessTokenConverter converter = new…

spring-security jwt spring-security-oauth2 spring-oauth2 jwe

asked Sep 29 '16 at 11:11

alexanoid

24,051
54
210
410

votes

1 answer

Validating issuer of a security token encrypted with JSON Web Encryption (JWE)?

I've been reading the JSON Web Encryption (JWE) specification, with the latest draft being 08, as we're looking at supporting JSON Web Tokens (JWT) in our authentication server. Using the asymmetric encryption method it defines, the symmetric key…

security encryption jwt jwe

asked Mar 19 '13 at 11:24

Greg Beech

133,383
43
204
250

votes

1 answer

.NET Core JWE: no "cty" header

I'm using the following code to issue my JWEs: var signCreds = new SigningCredentials(new SymmetricSecurityKey(Encoding.ASCII.GetBytes(Configuration["Jwt:SigningKey"])), SecurityAlgorithms.HmacSha256); var encryptionCreds = new…

c# .net jwt bearer-token jwe

asked Nov 16 '19 at 11:15

Dzmitry Shauchuk

votes

1 answer

Unable to Read RSA Key

I need to read in an RSA private key from a file to sign a JWT. I am using the openssl to generate a private key. When decrypting the private key getting length too large error openssl genrsa -des3 -out jwt-private.pem 2048 func main() { …

go jwt rsa pem jwe

asked Jun 17 '21 at 06:31

user1844634

1,221
2
17
35

votes

0 answers

When using Keycloak as an identiy broker, how can it be configured to receive encrypted identity tokens?

I am trying to configure Keycloak as an Identity Broker between an OIDC Provider and another application. I was able to achieve successful user login when the ID Tokens were not encrypted. I am trying to configure Keycloak to be able to accept…

encryption keycloak jwe oidc-identity-brokering

asked May 18 '20 at 15:11

E Loh

2 3

…

10 11 Next