connect2id / Nimbus-JOSE-JWT / issues / #78 - Check if private 'd' paramter of EC JWKs is correctly padded — Bitbucket

Issue #78 resolved

Vladimir Dzhuvinov created an issue 2014-01-24

See http://tools.ietf.org/html/draft-ietf-jose-json-web-algorithms-20#section-6.2.2.1

Comments (3)

Vladimir Dzhuvinov reporter
- changed status to open
- 2014-01-27T07:37:31+00:00
Vladimir Dzhuvinov reporter
The length of [the d] octet string MUST be ceiling(log-base-2(n)/8) octets (where n is the order of the curve).

Order of curve P-256 is BigInteger
```
115792089210356248762697446949407573529996955224135760342422259061068512044369
```
Computation seems infeasible, consider using table lookup.
- 2014-01-27T08:02:20+00:00
Vladimir Dzhuvinov reporter
- changed status to resolved
The 'd' parameter is leading zero padded up the curve field size (the std P-256/384/512 curves have 'x', 'y' and 'd' parameters with the same length). The curve order - based calculation is not used. See commit fa37b29.
- 2014-01-27T09:44:20+00:00
Log in to comment

Assignee: –

Type: task

Priority: major

Status: resolved

Component: –

Milestone: –

Votes: 0

Watchers: 1

Jira: the preferred issue tracker for Bitbucket. Join the team!