search

liuchunchi / draft-liu-acme-rats

Automated Certificate Management Environment (ACME) rats Identifier and Challenge Type
Other
1 stars 0 forks source link

keyAuthorization string validation process #4

Closed liuchunchi closed 6 days ago

liuchunchi commented 1 month ago
  1. the original keyAuthorization string is token concats '.' concats base64url(Thumbprint(accountKey)). In this draft, I replaced Thumbprint(accountKey) with attestationResult, no hash, which lacks a proof of possession to the accountKey, and attestationResult is plaintext.

Should we construct a proper JSON/JWS Object, where the payload contains the attestationResult?

liuchunchi commented 6 days ago

redirect to issue #5