Non Repudiation

Dave Tonge reporter

also from Tim Würtele:

In the same context as above: With PAR+JAR, the /actual/ authorization request remains as-is, i.e., without a signature. Depending on whether there is some intuition behind non-repudiation, the lack of a signature on the actual authorization request may have unintended consequences (e.g., what if a client sent a PAR, but claims to have never sent the actual authorization request?). Again, whether this is an interesting thing to look at depends on the above.

‌

2023-04-12T14:09:15+00:00

Dave Tonge reporter

We discussed this on the call today.

The main aim of non-repudiation in this spec is that the sender of a message cannot deny having created it.

A few examples:

When a client is starting a flow to make a payment, those payment parameters, either expressed in a scope or in a RAR object can be signed as part of a JAR/PAR request. If the client later turns around and says I never asked for a payment to X, the receiver (bank) has the signed message to show that the payment request originated from the client.
If a resource server responds with some account information including a balance and an account number, if this is signed (with HTTP signatures) then the receiver has some proof that the resource server responded with those values.

We discussed on the call that we can’t make any claims about their being non-repudiation across an entire flow - we are only able to provide functionality for an individual request or response to be signed.

You make a good point with the actual front-channel authorization request being unable to be signed - this is something that we will add to the security considerations.

We will also add a security consideration about the fact that it may be difficult to link a signed message to a real world user (e.g. the fact that a list of bank transactions is signed isn’t enough to say that these were transactions for user X and account Y)

I hope this helps, but please ask any further clarifying questions that you have.

‌