Internet Assigned Numbers Authority JSON Object Signing and Encryption (JOSE) Created 2015-01-23 Last Updated 2023-02-21 Available Formats [IMG] XML [IMG] HTML [IMG] Plain text Registries included below * JSON Web Signature and Encryption Header Parameters * JSON Web Signature and Encryption Algorithms * JSON Web Encryption Compression Algorithms * JSON Web Key Types * JSON Web Key Elliptic Curve * JSON Web Key Parameters * JSON Web Key Use * JSON Web Key Operations * JSON Web Key Set Parameters JSON Web Signature and Encryption Header Parameters Registration Procedure(s) Specification Required Expert(s) Sean Turner Reference [RFC7515] Note Registration requests should be sent to the mailing list described in [RFC7515]. If approved, designated experts should notify IANA within three weeks. For assistance, please contact iana@iana.org. Available Formats [IMG] CSV Header Parameter Name Header Parameter Description Header Parameter Usage Location(s) Change Controller Reference alg Algorithm JWS [IESG] [RFC7515, Section 4.1.1] jku JWK Set URL JWS [IESG] [RFC7515, Section 4.1.2] jwk JSON Web Key JWS [IESG] [RFC7515, Section 4.1.3] kid Key ID JWS [IESG] [RFC7515, Section 4.1.4] x5u X.509 URL JWS [IESG] [RFC7515, Section 4.1.5] x5c X.509 Certificate Chain JWS [IESG] [RFC7515, Section 4.1.6] x5t X.509 Certificate SHA-1 Thumbprint JWS [IESG] [RFC7515, Section 4.1.7] x5t#S256 X.509 Certificate SHA-256 Thumbprint JWS [IESG] [RFC7515, Section 4.1.8] typ Type JWS [IESG] [RFC7515, Section 4.1.9] cty Content Type JWS [IESG] [RFC7515, Section 4.1.10] crit Critical JWS [IESG] [RFC7515, Section 4.1.11] alg Algorithm JWE [IESG] [RFC7516, Section 4.1.1] enc Encryption Algorithm JWE [IESG] [RFC7516, Section 4.1.2] zip Compression Algorithm JWE [IESG] [RFC7516, Section 4.1.3] jku JWK Set URL JWE [IESG] [RFC7516, Section 4.1.4] jwk JSON Web Key JWE [IESG] [RFC7516, Section 4.1.5] kid Key ID JWE [IESG] [RFC7516, Section 4.1.6] x5u X.509 URL JWE [IESG] [RFC7516, Section 4.1.7] x5c X.509 Certificate Chain JWE [IESG] [RFC7516, Section 4.1.8] x5t X.509 Certificate SHA-1 Thumbprint JWE [IESG] [RFC7516, Section 4.1.9] x5t#S256 X.509 Certificate SHA-256 Thumbprint JWE [IESG] [RFC7516, Section 4.1.10] typ Type JWE [IESG] [RFC7516, Section 4.1.11] cty Content Type JWE [IESG] [RFC7516, Section 4.1.12] crit Critical JWE [IESG] [RFC7516, Section 4.1.13] epk Ephemeral Public Key JWE [IESG] [RFC7518, Section 4.6.1.1] apu Agreement PartyUInfo JWE [IESG] [RFC7518, Section 4.6.1.2] apv Agreement PartyVInfo JWE [IESG] [RFC7518, Section 4.6.1.3] iv Initialization Vector JWE [IESG] [RFC7518, Section 4.7.1.1] tag Authentication Tag JWE [IESG] [RFC7518, Section 4.7.1.2] p2s PBES2 Salt Input JWE [IESG] [RFC7518, Section 4.8.1.1] p2c PBES2 Count JWE [IESG] [RFC7518, Section 4.8.1.2] iss Issuer JWE [IESG] [RFC7519, Section 4.1.1] sub Subject JWE [IESG] [RFC7519, Section 4.1.2] aud Audience JWE [IESG] [RFC7519, Section 4.1.3] b64 Base64url-Encode Payload JWS [IESG] [RFC7797, Section 3] ppt PASSporT extension identifier JWS [IESG] [RFC8225, Section 8.1] url URL JWE, JWS [IESG] [RFC8555, Section 6.4.1] nonce Nonce JWE, JWS [IESG] [RFC8555, Section 6.5.2] svt Signature Validation Token JWS [IETF] [RFC9321] JSON Web Signature and Encryption Algorithms Registration Procedure(s) Specification Required Expert(s) Sean Turner Reference [RFC7518] Note Registration requests should be sent to the mailing list described in [RFC7518]. If approved, designated experts should notify IANA within three weeks. For assistance, please contact iana@iana.org. Available Formats [IMG] CSV Algorithm JOSE Algorithm Name Algorithm Description Usage Implementation Change Controller Reference Algorithm Analysis Document(s) Location(s) Requirements HS256 HMAC using SHA-256 alg Required [IESG] [RFC7518, Section 3.2] n/a HS384 HMAC using SHA-384 alg Optional [IESG] [RFC7518, Section 3.2] n/a HS512 HMAC using SHA-512 alg Optional [IESG] [RFC7518, Section 3.2] n/a RS256 RSASSA-PKCS1-v1_5 using alg Recommended [IESG] [RFC7518, Section 3.3] n/a SHA-256 RS384 RSASSA-PKCS1-v1_5 using alg Optional [IESG] [RFC7518, Section 3.3] n/a SHA-384 RS512 RSASSA-PKCS1-v1_5 using alg Optional [IESG] [RFC7518, Section 3.3] n/a SHA-512 ES256 ECDSA using P-256 and alg Recommended+ [IESG] [RFC7518, Section 3.4] n/a SHA-256 ES384 ECDSA using P-384 and alg Optional [IESG] [RFC7518, Section 3.4] n/a SHA-384 ES512 ECDSA using P-521 and alg Optional [IESG] [RFC7518, Section 3.4] n/a SHA-512 PS256 RSASSA-PSS using SHA-256 alg Optional [IESG] [RFC7518, Section 3.5] n/a and MGF1 with SHA-256 PS384 RSASSA-PSS using SHA-384 alg Optional [IESG] [RFC7518, Section 3.5] n/a and MGF1 with SHA-384 PS512 RSASSA-PSS using SHA-512 alg Optional [IESG] [RFC7518, Section 3.5] n/a and MGF1 with SHA-512 none No digital signature or alg Optional [IESG] [RFC7518, Section 3.6] n/a MAC performed RSA1_5 RSAES-PKCS1-v1_5 alg Recommended- [IESG] [RFC7518, Section 4.2] n/a RSA-OAEP RSAES OAEP using default alg Recommended+ [IESG] [RFC7518, Section 4.3] n/a parameters RSA-OAEP-256 RSAES OAEP using SHA-256 alg Optional [IESG] [RFC7518, Section 4.3] n/a and MGF1 with SHA-256 A128KW AES Key Wrap using alg Recommended [IESG] [RFC7518, Section 4.4] n/a 128-bit key A192KW AES Key Wrap using alg Optional [IESG] [RFC7518, Section 4.4] n/a 192-bit key A256KW AES Key Wrap using alg Recommended [IESG] [RFC7518, Section 4.4] n/a 256-bit key dir Direct use of a shared alg Recommended [IESG] [RFC7518, Section 4.5] n/a symmetric key ECDH-ES ECDH-ES using Concat KDF alg Recommended+ [IESG] [RFC7518, Section 4.6] n/a ECDH-ES+A128KW ECDH-ES using Concat KDF alg Recommended [IESG] [RFC7518, Section 4.6] n/a and "A128KW" wrapping ECDH-ES+A192KW ECDH-ES using Concat KDF alg Optional [IESG] [RFC7518, Section 4.6] n/a and "A192KW" wrapping ECDH-ES+A256KW ECDH-ES using Concat KDF alg Recommended [IESG] [RFC7518, Section 4.6] n/a and "A256KW" wrapping A128GCMKW Key wrapping with AES alg Optional [IESG] [RFC7518, Section 4.7] n/a GCM using 128-bit key A192GCMKW Key wrapping with AES alg Optional [IESG] [RFC7518, Section 4.7] n/a GCM using 192-bit key A256GCMKW Key wrapping with AES alg Optional [IESG] [RFC7518, Section 4.7] n/a GCM using 256-bit key PBES2-HS256+A128KW PBES2 with HMAC SHA-256 alg Optional [IESG] [RFC7518, Section 4.8] n/a and "A128KW" wrapping PBES2-HS384+A192KW PBES2 with HMAC SHA-384 alg Optional [IESG] [RFC7518, Section 4.8] n/a and "A192KW" wrapping PBES2-HS512+A256KW PBES2 with HMAC SHA-512 alg Optional [IESG] [RFC7518, Section 4.8] n/a and "A256KW" wrapping AES_128_CBC_HMAC_SHA_256 A128CBC-HS256 authenticated encryption enc Required [IESG] [RFC7518, Section 5.2.3] n/a algorithm AES_192_CBC_HMAC_SHA_384 A192CBC-HS384 authenticated encryption enc Optional [IESG] [RFC7518, Section 5.2.4] n/a algorithm AES_256_CBC_HMAC_SHA_512 A256CBC-HS512 authenticated encryption enc Required [IESG] [RFC7518, Section 5.2.5] n/a algorithm A128GCM AES GCM using 128-bit enc Recommended [IESG] [RFC7518, Section 5.3] n/a key A192GCM AES GCM using 192-bit enc Optional [IESG] [RFC7518, Section 5.3] n/a key A256GCM AES GCM using 256-bit enc Recommended [IESG] [RFC7518, Section 5.3] n/a key EdDSA EdDSA signature alg Optional [IESG] [RFC8037, Section 3.1] [RFC8032] algorithms RS1 RSASSA-PKCS1-v1_5 with JWK Prohibited [W3C_Web_Cryptography_Working_Group] [https://www.w3.org/TR/WebCryptoAPI] [draft-irtf-cfrg-webcrypto-algorithms] SHA-1 RSA-OAEP-384 RSA-OAEP using SHA-384 alg Optional [W3C_Web_Cryptography_Working_Group] [https://www.w3.org/TR/WebCryptoAPI] n/a and MGF1 with SHA-384 RSA-OAEP-512 RSA-OAEP using SHA-512 alg Optional [W3C_Web_Cryptography_Working_Group] [https://www.w3.org/TR/WebCryptoAPI] n/a and MGF1 with SHA-512 A128CBC AES CBC using 128 bit JWK Prohibited [W3C_Web_Cryptography_Working_Group] [https://www.w3.org/TR/WebCryptoAPI] [draft-irtf-cfrg-webcrypto-algorithms] key A192CBC AES CBC using 192 bit JWK Prohibited [W3C_Web_Cryptography_Working_Group] [https://www.w3.org/TR/WebCryptoAPI] [draft-irtf-cfrg-webcrypto-algorithms] key A256CBC AES CBC using 256 bit JWK Prohibited [W3C_Web_Cryptography_Working_Group] [https://www.w3.org/TR/WebCryptoAPI] [draft-irtf-cfrg-webcrypto-algorithms] key A128CTR AES CTR using 128 bit JWK Prohibited [W3C_Web_Cryptography_Working_Group] [https://www.w3.org/TR/WebCryptoAPI] [draft-irtf-cfrg-webcrypto-algorithms] key A192CTR AES CTR using 192 bit JWK Prohibited [W3C_Web_Cryptography_Working_Group] [https://www.w3.org/TR/WebCryptoAPI] [draft-irtf-cfrg-webcrypto-algorithms] key A256CTR AES CTR using 256 bit JWK Prohibited [W3C_Web_Cryptography_Working_Group] [https://www.w3.org/TR/WebCryptoAPI] [draft-irtf-cfrg-webcrypto-algorithms] key HS1 HMAC using SHA-1 JWK Prohibited [W3C_Web_Cryptography_Working_Group] [https://www.w3.org/TR/WebCryptoAPI] [draft-irtf-cfrg-webcrypto-algorithms] ES256K ECDSA using secp256k1 alg Optional [IESG] [RFC8812, Section 3.2] [SEC2] curve and SHA-256 JSON Web Encryption Compression Algorithms Registration Procedure(s) Specification Required Expert(s) Sean Turner Reference [RFC7518] Note Registration requests should be sent to the mailing list described in [RFC7518]. If approved, designated experts should notify IANA within three weeks. For assistance, please contact iana@iana.org. Available Formats [IMG] CSV Compression Algorithm Value Compression Algorithm Description Change Controller Reference DEF DEFLATE [IESG] [RFC7516] JSON Web Key Types Registration Procedure(s) Specification Required Expert(s) Sean Turner Reference [RFC7518][RFC7638] Note Registration requests should be sent to the mailing list described in [RFC7518]. If approved, designated experts should notify IANA within three weeks. For assistance, please contact iana@iana.org. Available Formats [IMG] CSV "kty" Parameter Value Key Type Description JOSE Implementation Requirements Change Controller Reference EC Elliptic Curve Recommended+ [IESG] [RFC7518, Section 6.2] RSA RSA Required [IESG] [RFC7518, Section 6.3] oct Octet sequence Required [IESG] [RFC7518, Section 6.4] OKP Octet string key pairs Optional [IESG] [RFC8037, Section 2] JSON Web Key Elliptic Curve Registration Procedure(s) Specification Required Expert(s) Sean Turner Reference [RFC7518][RFC7638] Note Registration requests should be sent to the mailing list described in [RFC7518]. If approved, designated experts should notify IANA within three weeks. For assistance, please contact iana@iana.org. Available Formats [IMG] CSV Curve Name Curve Description JOSE Implementation Requirements Change Controller Reference P-256 P-256 Curve Recommended+ [IESG] [RFC7518, Section 6.2.1.1] P-384 P-384 Curve Optional [IESG] [RFC7518, Section 6.2.1.1] P-521 P-521 Curve Optional [IESG] [RFC7518, Section 6.2.1.1] Ed25519 Ed25519 signature algorithm key pairs Optional [IESG] [RFC8037, Section 3.1] Ed448 Ed448 signature algorithm key pairs Optional [IESG] [RFC8037, Section 3.1] X25519 X25519 function key pairs Optional [IESG] [RFC8037, Section 3.2] X448 X448 function key pairs Optional [IESG] [RFC8037, Section 3.2] secp256k1 SECG secp256k1 curve Optional [IESG] [RFC8812, Section 3.1] JSON Web Key Parameters Registration Procedure(s) Specification Required Expert(s) Sean Turner Reference [RFC7517][RFC7638] Note Registration requests should be sent to the mailing list described in [RFC7517]. If approved, designated experts should notify IANA within three weeks. For assistance, please contact iana@iana.org. Available Formats [IMG] CSV Parameter Name Parameter Description Used with Parameter Change Controller Reference "kty" Value(s) Information Class kty Key Type * Public [IESG] [RFC7517, Section 4.1] use Public Key Use * Public [IESG] [RFC7517, Section 4.2] key_ops Key Operations * Public [IESG] [RFC7517, Section 4.3] alg Algorithm * Public [IESG] [RFC7517, Section 4.4] kid Key ID * Public [IESG] [RFC7517, Section 4.5] x5u X.509 URL * Public [IESG] [RFC7517, Section 4.6] x5c X.509 Certificate * Public [IESG] [RFC7517, Section 4.7] Chain x5t X.509 Certificate * Public [IESG] [RFC7517, Section 4.8] SHA-1 Thumbprint x5t#S256 X.509 Certificate * Public [IESG] [RFC7517, Section 4.9] SHA-256 Thumbprint crv Curve EC Public [IESG] [RFC7518, Section 6.2.1.1] x X Coordinate EC Public [IESG] [RFC7518, Section 6.2.1.2] y Y Coordinate EC Public [IESG] [RFC7518, Section 6.2.1.3] d ECC Private Key EC Private [IESG] [RFC7518, Section 6.2.2.1] n Modulus RSA Public [IESG] [RFC7518, Section 6.3.1.1] e Exponent RSA Public [IESG] [RFC7518, Section 6.3.1.2] d Private Exponent RSA Private [IESG] [RFC7518, Section 6.3.2.1] p First Prime Factor RSA Private [IESG] [RFC7518, Section 6.3.2.2] q Second Prime Factor RSA Private [IESG] [RFC7518, Section 6.3.2.3] dp First Factor CRT RSA Private [IESG] [RFC7518, Section 6.3.2.4] Exponent dq Second Factor CRT RSA Private [IESG] [RFC7518, Section 6.3.2.5] Exponent qi First CRT Coefficient RSA Private [IESG] [RFC7518, Section 6.3.2.6] oth Other Primes Info RSA Private [IESG] [RFC7518, Section 6.3.2.7] k Key Value oct Private [IESG] [RFC7518, Section 6.4.1] crv The subtype of key OKP Public [IESG] [RFC8037, Section 2] pair d The private key OKP Private [IESG] [RFC8037, Section 2] x The public key OKP Public [IESG] [RFC8037, Section 2] ext Extractable * Public [W3C_Web_Cryptography_Working_Group] [https://www.w3.org/TR/WebCryptoAPI] JSON Web Key Use Registration Procedure(s) Specification Required Expert(s) Sean Turner Reference [RFC7517] Note Registration requests should be sent to the mailing list described in [RFC7517]. If approved, designated experts should notify IANA within three weeks. For assistance, please contact iana@iana.org. Available Formats [IMG] CSV Use Member Value Use Description Change Controller Reference sig Digital Signature or MAC [IESG] [RFC7517, Section 4.2] enc Encryption [IESG] [RFC7517, Section 4.2] JSON Web Key Operations Registration Procedure(s) Specification Required Expert(s) Sean Turner Reference [RFC7517] Note Registration requests should be sent to the mailing list described in [RFC7517]. If approved, designated experts should notify IANA within three weeks. For assistance, please contact iana@iana.org. Available Formats [IMG] CSV Key Operation Value Key Operation Description Change Controller Reference sign Compute digital signature or MAC [IESG] [RFC7517, Section 4.3] verify Verify digital signature or MAC [IESG] [RFC7517, Section 4.3] encrypt Encrypt content [IESG] [RFC7517, Section 4.3] decrypt Decrypt content and validate decryption, if applicable [IESG] [RFC7517, Section 4.3] wrapKey Encrypt key [IESG] [RFC7517, Section 4.3] unwrapKey Decrypt key and validate decryption, if applicable [IESG] [RFC7517, Section 4.3] deriveKey Derive key [IESG] [RFC7517, Section 4.3] deriveBits Derive bits not to be used as a key [IESG] [RFC7517, Section 4.3] JSON Web Key Set Parameters Registration Procedure(s) Specification Required Expert(s) Sean Turner Reference [RFC7517] Note Registration requests should be sent to the mailing list described in [RFC7517]. If approved, designated experts should notify IANA within three weeks. For assistance, please contact iana@iana.org. Available Formats [IMG] CSV Parameter Name Parameter Description Change Controller Reference keys Array of JWK Values [IESG] [RFC7517, Section 5.1] Contact Information ID Name Contact URI Last Updated [IESG] IESG mailto:iesg&ietf.org [IETF] IETF mailto:iesg&ietf.org [W3C_Web_Cryptography_Working_Group] W3C Web Cryptography Working Group http://www.w3.org Licensing Terms