This is an issue tracking consensus on the mechanism for encryption in s2s. Current text proposes:
- Use JWE, mandating HPKE
- Use JWKs for keys, wrapped to provide attestations (using proofs) and purpose
- Use nested sign-then-encrypt JWTs for client origin, binding to jwk thumbprint
Still TODO: if we have any mandated supported curves and how to do post-quantum.
This is an issue tracking consensus on the mechanism for encryption in s2s. Current text proposes:
Still TODO: if we have any mandated supported curves and how to do post-quantum.