marco-tiloca-sics
commented
3 years ago Manually addressed in branch "v-12", see commit https://github.com/core-wg/oscore-groupcomm/commit/481188b671ecd49dc4b0c6fc082dd1d09b68556e
Closed emanjon closed 3 years ago
marco-tiloca-sics
commented
3 years ago Manually addressed in branch "v-12", see commit https://github.com/core-wg/oscore-groupcomm/commit/481188b671ecd49dc4b0c6fc082dd1d09b68556e
Even if CounterSignature is used, the algorithm is a signature algorithm, and not a counter signature algorithm.
Not sure if all algorithms need to be protected, but if the signature algorithm is protected, the pairwise kdf alg should also be protected.
The sender's public key needs to be integrity protected, COSE does not do that for you.