hi *, in [0] there is an example of JWE with RSAES OAEP and AES GCM. One of the first steps says "Generate a 256 bit random Content Encryption Key (CEK).” My question is,in a real use case scenario would you expect that a new CEK is generated for every single JWE message?
thanks antonio [0] https://tools.ietf.org/html/draft-ietf-jose-json-web-encryption-40#appendix-A.1 _______________________________________________ jose mailing list [email protected] https://www.ietf.org/mailman/listinfo/jose
