Add CoRIM Encryption mechanism in the CDDL

ietf-rats / ietf-corim-cddl

This repository is abandoned. The adopted I-D can be found at:

https://github.com/ietf-rats-wg/draft-ietf-rats-corim/

2 stars 0 forks source link

Add CoRIM Encryption mechanism in the CDDL #42

Open yogeshbdeshpande opened 3 years ago

yogeshbdeshpande commented 3 years ago

Current CoRIM Manifest structure via $concise-reference-integrity-manifest-type-choice only addresses the use case of CoRIM Signing. There may be use cases, where an Endorser would prefer to have an End to End Encryption of CoRIM while transporting Identity claims or claims which needs encryption at source (i.e. at application layer).

This issue tracks future enhancement of CoRIM to add COSE Encryption to the format, in addition to COSE signing.

nedmsmith commented 3 years ago

I didn't find '$concise-reference-integrity-manifest-type-choice' in the endorsement spec. Maybe this refers to '$concise-reference-integrity-manifest-group-choice'?

nedmsmith commented 3 years ago

I agree that a group-choice or type-choice approach would allow future extensions for support encrypted corim or something else.

yogeshbdeshpande commented 3 years ago

I am referring to concise-rim.cddl for $concise-reference-integrity-manifest-type-choice, which has been recently added by @thomas-fossati