Closed
Description
| Q | A |
|---|---|
| Bug report? | no |
| Feature request? | yes |
| BC Break report? | no |
| RFC? / Specification | draft-irtf-cfrg-webcrypto-algorithms, RFC8152, RFC8230 |
| Version | v1.2.0? |
Many algorithms have been referenced in the COSE specification (see #96) and other specification.
See #96, https://www.iana.org/assignments/cose/cose.xhtml#algorithms and https://www.iana.org/assignments/jose/jose.xhtml#web-signature-encryption-algorithms
Some of these algorithms can be added. For those that are prohibited, an implementation can be done with explicit warnings.
Hereafter some potential algorithms (prohibited ones in bold):
Target for v1.2:
- RS1 (should be easy to implement)
- HS1 (should be easy to implement)
- HMAC 256/64 (should be easy to implement)
- RSAES-OAEP w/ SHA-384 (should be easy to implement)
- RSAES-OAEP w/ SHA-512 (should be easy to implement)
- ChaCha20/Poly1305 (should be easy to implement)
- AES-CCM-16-64-128 (should be easy to implement)
- AES-CCM-16-64-256 (should be easy to implement)
- AES-CCM-64-64-128 (should be easy to implement)
- AES-CCM-64-64-256 (should be easy to implement)
- AES-CCM-16-128-128 (should be easy to implement)
- AES-CCM-16-128-256 (should be easy to implement)
- AES-CCM-64-128-128 (should be easy to implement)
- AES-CCM-64-128-256 (should be easy to implement)
- A128CTR (should be easy to implement)
- A192CTR (should be easy to implement)
- A256CTR (should be easy to implement)
Target for v2.0+:
- A128CBC (should be easy to implement)
- A192CBC (should be easy to implement)
- A256CBC (should be easy to implement)
- ECDH-SS + A256KW (to be discussed)
- ECDH-SS + A192KW (to be discussed)
- ECDH-SS + A128KW (to be discussed)
- ECDH-SS + HKDF-512 (to be discussed)
- ECDH-SS + HKDF-256 (to be discussed)
- ECDH-ES + HKDF-512 (should be easy to implement, details needed)
- ECDH-ES + HKDF-256 (should be easy to implement, details needed)
- direct+HKDF-AES-256 (details needed)
- direct+HKDF-AES-128 (details needed)
- direct+HKDF-SHA-512 (details needed)
- direct+HKDF-SHA-256 (details needed)
- AES-MAC 128/64 (details needed)
- AES-MAC 256/64 (details needed)
- AES-MAC 128/128 (details needed)
- AES-MAC 256/128 (details needed)