JSON Object Signing and Encryption (JOSE)

Created: 2015-01-23
Last Updated: 2024-10-16
Available Formats: XML
HTML
Plain text

Registries included below

JSON Web Signature and Encryption Header Parameters
JSON Web Signature and Encryption Algorithms
JSON Web Encryption Compression Algorithms
JSON Web Key Types
JSON Web Key Elliptic Curve
JSON Web Key Parameters
JSON Web Key Use
JSON Web Key Operations
JSON Web Key Set Parameters

JSON Web Signature and Encryption Header Parameters

Registration Procedure(s)

Specification Required

Expert(s)

Sean Turner, Mike Jones

Reference

[RFC7515]

Note

Registration requests should be sent to the mailing list described in 
[RFC7515]. If approved, designated experts should notify IANA within 
three weeks. For assistance, please contact iana@iana.org.

Available Formats

CSV

Header Parameter Name	Header Parameter Description	Header Parameter Usage Location(s)	Change Controller	Reference
alg	Algorithm	JWS	[IESG]	[RFC7515, Section 4.1.1]
jku	JWK Set URL	JWS	[IESG]	[RFC7515, Section 4.1.2]
jwk	JSON Web Key	JWS	[IESG]	[RFC7515, Section 4.1.3]
kid	Key ID	JWS	[IESG]	[RFC7515, Section 4.1.4]
x5u	X.509 URL	JWS	[IESG]	[RFC7515, Section 4.1.5]
x5c	X.509 Certificate Chain	JWS	[IESG]	[RFC7515, Section 4.1.6]
x5t	X.509 Certificate SHA-1 Thumbprint	JWS	[IESG]	[RFC7515, Section 4.1.7]
x5t#S256	X.509 Certificate SHA-256 Thumbprint	JWS	[IESG]	[RFC7515, Section 4.1.8]
typ	Type	JWS	[IESG]	[RFC7515, Section 4.1.9]
cty	Content Type	JWS	[IESG]	[RFC7515, Section 4.1.10]
crit	Critical	JWS	[IESG]	[RFC7515, Section 4.1.11]
alg	Algorithm	JWE	[IESG]	[RFC7516, Section 4.1.1]
enc	Encryption Algorithm	JWE	[IESG]	[RFC7516, Section 4.1.2]
zip	Compression Algorithm	JWE	[IESG]	[RFC7516, Section 4.1.3]
jku	JWK Set URL	JWE	[IESG]	[RFC7516, Section 4.1.4]
jwk	JSON Web Key	JWE	[IESG]	[RFC7516, Section 4.1.5]
kid	Key ID	JWE	[IESG]	[RFC7516, Section 4.1.6]
x5u	X.509 URL	JWE	[IESG]	[RFC7516, Section 4.1.7]
x5c	X.509 Certificate Chain	JWE	[IESG]	[RFC7516, Section 4.1.8]
x5t	X.509 Certificate SHA-1 Thumbprint	JWE	[IESG]	[RFC7516, Section 4.1.9]
x5t#S256	X.509 Certificate SHA-256 Thumbprint	JWE	[IESG]	[RFC7516, Section 4.1.10]
typ	Type	JWE	[IESG]	[RFC7516, Section 4.1.11]
cty	Content Type	JWE	[IESG]	[RFC7516, Section 4.1.12]
crit	Critical	JWE	[IESG]	[RFC7516, Section 4.1.13]
epk	Ephemeral Public Key	JWE	[IESG]	[RFC7518, Section 4.6.1.1]
apu	Agreement PartyUInfo	JWE	[IESG]	[RFC7518, Section 4.6.1.2]
apv	Agreement PartyVInfo	JWE	[IESG]	[RFC7518, Section 4.6.1.3]
iv	Initialization Vector	JWE	[IESG]	[RFC7518, Section 4.7.1.1]
tag	Authentication Tag	JWE	[IESG]	[RFC7518, Section 4.7.1.2]
p2s	PBES2 Salt Input	JWE	[IESG]	[RFC7518, Section 4.8.1.1]
p2c	PBES2 Count	JWE	[IESG]	[RFC7518, Section 4.8.1.2]
iss	Issuer	JWE	[IESG]	[RFC7519, Section 4.1.1]
sub	Subject	JWE	[IESG]	[RFC7519, Section 4.1.2]
aud	Audience	JWE	[IESG]	[RFC7519, Section 4.1.3]
b64	Base64url-Encode Payload	JWS	[IESG]	[RFC7797, Section 3]
ppt	PASSporT extension identifier	JWS	[IESG]	[RFC8225, Section 8.1]
url	URL	JWE, JWS	[IESG]	[RFC8555, Section 6.4.1]
nonce	Nonce	JWE, JWS	[IESG]	[RFC8555, Section 6.5.2]
svt	Signature Validation Token	JWS	[IETF]	[RFC9321]
trust_chain	OpenID Federation Trust Chain	JWS	[OpenID_Foundation_Artifact_Binding_Working_Group]	[OpenID Federation 1.0, Section 4.0]

JSON Web Signature and Encryption Algorithms

Registration Procedure(s)

Specification Required

Expert(s)

Sean Turner, Mike Jones

Reference

[RFC7518]

Note

Registration requests should be sent to the mailing list described in 
[RFC7518]. If approved, designated experts should notify IANA within 
three weeks. For assistance, please contact iana@iana.org.

Available Formats

CSV

Algorithm Name	Algorithm Description	Algorithm Usage Location(s)	JOSE Implementation Requirements	Change Controller	Reference	Algorithm Analysis Document(s)
HS256	HMAC using SHA-256	alg	Required	[IESG]	[RFC7518, Section 3.2]	n/a
HS384	HMAC using SHA-384	alg	Optional	[IESG]	[RFC7518, Section 3.2]	n/a
HS512	HMAC using SHA-512	alg	Optional	[IESG]	[RFC7518, Section 3.2]	n/a
RS256	RSASSA-PKCS1-v1_5 using SHA-256	alg	Recommended	[IESG]	[RFC7518, Section 3.3]	n/a
RS384	RSASSA-PKCS1-v1_5 using SHA-384	alg	Optional	[IESG]	[RFC7518, Section 3.3]	n/a
RS512	RSASSA-PKCS1-v1_5 using SHA-512	alg	Optional	[IESG]	[RFC7518, Section 3.3]	n/a
ES256	ECDSA using P-256 and SHA-256	alg	Recommended+	[IESG]	[RFC7518, Section 3.4]	n/a
ES384	ECDSA using P-384 and SHA-384	alg	Optional	[IESG]	[RFC7518, Section 3.4]	n/a
ES512	ECDSA using P-521 and SHA-512	alg	Optional	[IESG]	[RFC7518, Section 3.4]	n/a
PS256	RSASSA-PSS using SHA-256 and MGF1 with SHA-256	alg	Optional	[IESG]	[RFC7518, Section 3.5]	n/a
PS384	RSASSA-PSS using SHA-384 and MGF1 with SHA-384	alg	Optional	[IESG]	[RFC7518, Section 3.5]	n/a
PS512	RSASSA-PSS using SHA-512 and MGF1 with SHA-512	alg	Optional	[IESG]	[RFC7518, Section 3.5]	n/a
none	No digital signature or MAC performed	alg	Optional	[IESG]	[RFC7518, Section 3.6]	n/a
RSA1_5	RSAES-PKCS1-v1_5	alg	Recommended-	[IESG]	[RFC7518, Section 4.2]	n/a
RSA-OAEP	RSAES OAEP using default parameters	alg	Recommended+	[IESG]	[RFC7518, Section 4.3]	n/a
RSA-OAEP-256	RSAES OAEP using SHA-256 and MGF1 with SHA-256	alg	Optional	[IESG]	[RFC7518, Section 4.3]	n/a
A128KW	AES Key Wrap using 128-bit key	alg	Recommended	[IESG]	[RFC7518, Section 4.4]	n/a
A192KW	AES Key Wrap using 192-bit key	alg	Optional	[IESG]	[RFC7518, Section 4.4]	n/a
A256KW	AES Key Wrap using 256-bit key	alg	Recommended	[IESG]	[RFC7518, Section 4.4]	n/a
dir	Direct use of a shared symmetric key	alg	Recommended	[IESG]	[RFC7518, Section 4.5]	n/a
ECDH-ES	ECDH-ES using Concat KDF	alg	Recommended+	[IESG]	[RFC7518, Section 4.6]	n/a
ECDH-ES+A128KW	ECDH-ES using Concat KDF and "A128KW" wrapping	alg	Recommended	[IESG]	[RFC7518, Section 4.6]	n/a
ECDH-ES+A192KW	ECDH-ES using Concat KDF and "A192KW" wrapping	alg	Optional	[IESG]	[RFC7518, Section 4.6]	n/a
ECDH-ES+A256KW	ECDH-ES using Concat KDF and "A256KW" wrapping	alg	Recommended	[IESG]	[RFC7518, Section 4.6]	n/a
A128GCMKW	Key wrapping with AES GCM using 128-bit key	alg	Optional	[IESG]	[RFC7518, Section 4.7]	n/a
A192GCMKW	Key wrapping with AES GCM using 192-bit key	alg	Optional	[IESG]	[RFC7518, Section 4.7]	n/a
A256GCMKW	Key wrapping with AES GCM using 256-bit key	alg	Optional	[IESG]	[RFC7518, Section 4.7]	n/a
PBES2-HS256+A128KW	PBES2 with HMAC SHA-256 and "A128KW" wrapping	alg	Optional	[IESG]	[RFC7518, Section 4.8]	n/a
PBES2-HS384+A192KW	PBES2 with HMAC SHA-384 and "A192KW" wrapping	alg	Optional	[IESG]	[RFC7518, Section 4.8]	n/a
PBES2-HS512+A256KW	PBES2 with HMAC SHA-512 and "A256KW" wrapping	alg	Optional	[IESG]	[RFC7518, Section 4.8]	n/a
A128CBC-HS256	AES_128_CBC_HMAC_SHA_256 authenticated encryption algorithm	enc	Required	[IESG]	[RFC7518, Section 5.2.3]	n/a
A192CBC-HS384	AES_192_CBC_HMAC_SHA_384 authenticated encryption algorithm	enc	Optional	[IESG]	[RFC7518, Section 5.2.4]	n/a
A256CBC-HS512	AES_256_CBC_HMAC_SHA_512 authenticated encryption algorithm	enc	Required	[IESG]	[RFC7518, Section 5.2.5]	n/a
A128GCM	AES GCM using 128-bit key	enc	Recommended	[IESG]	[RFC7518, Section 5.3]	n/a
A192GCM	AES GCM using 192-bit key	enc	Optional	[IESG]	[RFC7518, Section 5.3]	n/a
A256GCM	AES GCM using 256-bit key	enc	Recommended	[IESG]	[RFC7518, Section 5.3]	n/a
EdDSA	EdDSA signature algorithms	alg	Optional	[IESG]	[RFC8037, Section 3.1]	[RFC8032]
RS1	RSASSA-PKCS1-v1_5 with SHA-1	JWK	Prohibited	[W3C_Web_Application_Security_WG]	[https://www.w3.org/TR/WebCryptoAPI]	[draft-irtf-cfrg-webcrypto-algorithms-00]
RSA-OAEP-384	RSA-OAEP using SHA-384 and MGF1 with SHA-384	alg	Optional	[W3C_Web_Application_Security_WG]	[https://www.w3.org/TR/WebCryptoAPI]	n/a
RSA-OAEP-512	RSA-OAEP using SHA-512 and MGF1 with SHA-512	alg	Optional	[W3C_Web_Application_Security_WG]	[https://www.w3.org/TR/WebCryptoAPI]	n/a
A128CBC	AES CBC using 128 bit key	JWK	Prohibited	[W3C_Web_Application_Security_WG]	[https://www.w3.org/TR/WebCryptoAPI]	[draft-irtf-cfrg-webcrypto-algorithms-00]
A192CBC	AES CBC using 192 bit key	JWK	Prohibited	[W3C_Web_Application_Security_WG]	[https://www.w3.org/TR/WebCryptoAPI]	[draft-irtf-cfrg-webcrypto-algorithms-00]
A256CBC	AES CBC using 256 bit key	JWK	Prohibited	[W3C_Web_Application_Security_WG]	[https://www.w3.org/TR/WebCryptoAPI]	[draft-irtf-cfrg-webcrypto-algorithms-00]
A128CTR	AES CTR using 128 bit key	JWK	Prohibited	[W3C_Web_Application_Security_WG]	[https://www.w3.org/TR/WebCryptoAPI]	[draft-irtf-cfrg-webcrypto-algorithms-00]
A192CTR	AES CTR using 192 bit key	JWK	Prohibited	[W3C_Web_Application_Security_WG]	[https://www.w3.org/TR/WebCryptoAPI]	[draft-irtf-cfrg-webcrypto-algorithms-00]
A256CTR	AES CTR using 256 bit key	JWK	Prohibited	[W3C_Web_Application_Security_WG]	[https://www.w3.org/TR/WebCryptoAPI]	[draft-irtf-cfrg-webcrypto-algorithms-00]
HS1	HMAC using SHA-1	JWK	Prohibited	[W3C_Web_Application_Security_WG]	[https://www.w3.org/TR/WebCryptoAPI]	[draft-irtf-cfrg-webcrypto-algorithms-00]
ES256K	ECDSA using secp256k1 curve and SHA-256	alg	Optional	[IESG]	[RFC8812, Section 3.2]	[SEC2]

JSON Web Encryption Compression Algorithms

Registration Procedure(s)

Specification Required

Expert(s)

Sean Turner, Mike Jones

Reference

[RFC7518]

Note

Registration requests should be sent to the mailing list described in 
[RFC7518]. If approved, designated experts should notify IANA within 
three weeks. For assistance, please contact iana@iana.org.

Available Formats

CSV

Compression Algorithm Value	Compression Algorithm Description	Change Controller	Reference
DEF	DEFLATE	[IESG]	[RFC7516]

JSON Web Key Types

Registration Procedure(s)

Specification Required

Expert(s)

Sean Turner, Mike Jones

Reference

[RFC7518][RFC7638]

Note

Registration requests should be sent to the mailing list described in 
[RFC7518]. If approved, designated experts should notify IANA within 
three weeks. For assistance, please contact iana@iana.org.

Available Formats

CSV

"kty" Parameter Value	Key Type Description	JOSE Implementation Requirements	Change Controller	Reference
EC	Elliptic Curve	Recommended+	[IESG]	[RFC7518, Section 6.2]
RSA	RSA	Required	[IESG]	[RFC7518, Section 6.3]
oct	Octet sequence	Required	[IESG]	[RFC7518, Section 6.4]
OKP	Octet string key pairs	Optional	[IESG]	[RFC8037, Section 2]

JSON Web Key Elliptic Curve

Registration Procedure(s)

Specification Required

Expert(s)

Sean Turner, Mike Jones

Reference

[RFC7518][RFC7638]

Note

Registration requests should be sent to the mailing list described in 
[RFC7518]. If approved, designated experts should notify IANA within 
three weeks. For assistance, please contact iana@iana.org.

Available Formats

CSV

Curve Name	Curve Description	JOSE Implementation Requirements	Change Controller	Reference
P-256	P-256 Curve	Recommended+	[IESG]	[RFC7518, Section 6.2.1.1]
P-384	P-384 Curve	Optional	[IESG]	[RFC7518, Section 6.2.1.1]
P-521	P-521 Curve	Optional	[IESG]	[RFC7518, Section 6.2.1.1]
Ed25519	Ed25519 signature algorithm key pairs	Optional	[IESG]	[RFC8037, Section 3.1]
Ed448	Ed448 signature algorithm key pairs	Optional	[IESG]	[RFC8037, Section 3.1]
X25519	X25519 function key pairs	Optional	[IESG]	[RFC8037, Section 3.2]
X448	X448 function key pairs	Optional	[IESG]	[RFC8037, Section 3.2]
secp256k1	SECG secp256k1 curve	Optional	[IESG]	[RFC8812, Section 3.1]

JSON Web Key Parameters

Registration Procedure(s)

Specification Required

Expert(s)

Sean Turner, Mike Jones

Reference

[RFC7517][RFC7638]

Note

Registration requests should be sent to the mailing list described in 
[RFC7517]. If approved, designated experts should notify IANA within 
three weeks. For assistance, please contact iana@iana.org.

Available Formats

CSV

Parameter Name	Parameter Description	Used with "kty" Value(s)	Parameter Information Class	Change Controller	Reference
kty	Key Type	*	Public	[IESG]	[RFC7517, Section 4.1]
use	Public Key Use	*	Public	[IESG]	[RFC7517, Section 4.2]
key_ops	Key Operations	*	Public	[IESG]	[RFC7517, Section 4.3]
alg	Algorithm	*	Public	[IESG]	[RFC7517, Section 4.4]
kid	Key ID	*	Public	[IESG]	[RFC7517, Section 4.5]
x5u	X.509 URL	*	Public	[IESG]	[RFC7517, Section 4.6]
x5c	X.509 Certificate Chain	*	Public	[IESG]	[RFC7517, Section 4.7]
x5t	X.509 Certificate SHA-1 Thumbprint	*	Public	[IESG]	[RFC7517, Section 4.8]
x5t#S256	X.509 Certificate SHA-256 Thumbprint	*	Public	[IESG]	[RFC7517, Section 4.9]
crv	Curve	EC	Public	[IESG]	[RFC7518, Section 6.2.1.1]
x	X Coordinate	EC	Public	[IESG]	[RFC7518, Section 6.2.1.2]
y	Y Coordinate	EC	Public	[IESG]	[RFC7518, Section 6.2.1.3]
d	ECC Private Key	EC	Private	[IESG]	[RFC7518, Section 6.2.2.1]
n	Modulus	RSA	Public	[IESG]	[RFC7518, Section 6.3.1.1]
e	Exponent	RSA	Public	[IESG]	[RFC7518, Section 6.3.1.2]
d	Private Exponent	RSA	Private	[IESG]	[RFC7518, Section 6.3.2.1]
p	First Prime Factor	RSA	Private	[IESG]	[RFC7518, Section 6.3.2.2]
q	Second Prime Factor	RSA	Private	[IESG]	[RFC7518, Section 6.3.2.3]
dp	First Factor CRT Exponent	RSA	Private	[IESG]	[RFC7518, Section 6.3.2.4]
dq	Second Factor CRT Exponent	RSA	Private	[IESG]	[RFC7518, Section 6.3.2.5]
qi	First CRT Coefficient	RSA	Private	[IESG]	[RFC7518, Section 6.3.2.6]
oth	Other Primes Info	RSA	Private	[IESG]	[RFC7518, Section 6.3.2.7]
k	Key Value	oct	Private	[IESG]	[RFC7518, Section 6.4.1]
crv	The subtype of key pair	OKP	Public	[IESG]	[RFC8037, Section 2]
d	The private key	OKP	Private	[IESG]	[RFC8037, Section 2]
x	The public key	OKP	Public	[IESG]	[RFC8037, Section 2]
ext	Extractable	*	Public	[W3C_Web_Application_Security_WG]	[https://www.w3.org/TR/WebCryptoAPI]
iat	Issued At, as defined in [RFC7519]	*	Public	[OpenID_Foundation_Artifact_Binding_Working_Group]	[OpenID Federation 1.0, Section 8.7.2]
nbf	Not Before, as defined in [RFC7519]	*	Public	[OpenID_Foundation_Artifact_Binding_Working_Group]	[OpenID Federation 1.0, Section 8.7.2]
exp	Expiration Time, as defined in [RFC7519]	*	Public	[OpenID_Foundation_Artifact_Binding_Working_Group]	[OpenID Federation 1.0, Section 8.7.2]
revoked	Revoked Key Properties	*	Public	[OpenID_Foundation_Artifact_Binding_Working_Group]	[OpenID Federation 1.0, Section 8.7.2]

JSON Web Key Use

Registration Procedure(s)

Specification Required

Expert(s)

Sean Turner, Mike Jones

Reference

[RFC7517]

Note

Registration requests should be sent to the mailing list described in 
[RFC7517]. If approved, designated experts should notify IANA within 
three weeks. For assistance, please contact iana@iana.org.

Available Formats

CSV

Use Member Value	Use Description	Change Controller	Reference
sig	Digital Signature or MAC	[IESG]	[RFC7517, Section 4.2]
enc	Encryption	[IESG]	[RFC7517, Section 4.2]

JSON Web Key Operations

Registration Procedure(s)

Specification Required

Expert(s)

Sean Turner, Mike Jones

Reference

[RFC7517]

Note

Registration requests should be sent to the mailing list described in 
[RFC7517]. If approved, designated experts should notify IANA within 
three weeks. For assistance, please contact iana@iana.org.

Available Formats

CSV

Key Operation Value	Key Operation Description	Change Controller	Reference
sign	Compute digital signature or MAC	[IESG]	[RFC7517, Section 4.3]
verify	Verify digital signature or MAC	[IESG]	[RFC7517, Section 4.3]
encrypt	Encrypt content	[IESG]	[RFC7517, Section 4.3]
decrypt	Decrypt content and validate decryption, if applicable	[IESG]	[RFC7517, Section 4.3]
wrapKey	Encrypt key	[IESG]	[RFC7517, Section 4.3]
unwrapKey	Decrypt key and validate decryption, if applicable	[IESG]	[RFC7517, Section 4.3]
deriveKey	Derive key	[IESG]	[RFC7517, Section 4.3]
deriveBits	Derive bits not to be used as a key	[IESG]	[RFC7517, Section 4.3]

JSON Web Key Set Parameters

Registration Procedure(s)

Specification Required

Expert(s)

Sean Turner, Mike Jones

Reference

[RFC7517]

Note

Registration requests should be sent to the mailing list described in 
[RFC7517]. If approved, designated experts should notify IANA within 
three weeks. For assistance, please contact iana@iana.org.

Available Formats

CSV

Parameter Name	Parameter Description	Change Controller	Reference
keys	Array of JWK Values	[IESG]	[RFC7517, Section 5.1]

Contact Information

ID	Name	Contact URI	Last Updated
[IESG]	IESG	mailto:iesg&ietf.org
[IETF]	IETF	mailto:iesg&ietf.org
[OpenID_Foundation_Artifact_Binding_Working_Group]	OpenID Foundation Artifact Binding Working Group	mailto:openid-specs-ab&lists.openid.net	2024-08-20
[W3C_Web_Application_Security_WG]	W3C Web Application Security Working Group	mailto:public-webappsec&w3.org	2024-10-16