On Mon, 2025-10-27 at 23:10 +0100, Karen ODonoghue wrote: > 8. Public Key Derived HMAC for JOSE > https://datatracker.ietf.org/doc/draft-bastian-jose-pkdh/
I fail to understand what is the point of this mechanism. Does anyone have more information than what is available in the abstract, which does not seem to give any good rationale about why this mechanism would be useful ? What is the point of using an ECDH exchange to derive a symmetric key to then perform a HMAC signature on a message, when the premise is that both parties must already have each other Public Keys anyway and therefore could simply apply an ECDSA signature ? Simo. -- Simo Sorce Distinguished Engineer RHEL Crypto Team Red Hat, Inc _______________________________________________ jose mailing list -- [email protected] To unsubscribe send an email to [email protected]
