json-proof-token 0.1.9

A library implementation based on the new JOSE Working Group draft specifications: JSON Web Proof (JWP), JSON Proof Token (JPT) and JSON Proof Algorithm (JPA).
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145

# json-proof-token


![License](https://img.shields.io/badge/License-Apache_2.0-blue.svg)
[![](https://img.shields.io/crates/v/json-proof-token?style=flat-square)](https://crates.io/crates/json-proof-token)
[![](https://img.shields.io/docsrs/json-proof-token?style=flat-square)](https://docs.rs/json-proof-token/)

## Description


Rust library implementing the new [JOSE Working Group](https://datatracker.ietf.org/wg/jose/documents/) drafts:
- [JSON Web Proof](https://datatracker.ietf.org/doc/html/draft-ietf-jose-json-web-proof)
- [JSON Proof Algorithms](https://datatracker.ietf.org/doc/html/draft-ietf-jose-json-proof-algorithms) 
- [JSON Proof Token](https://datatracker.ietf.org/doc/html/draft-ietf-jose-json-proof-token)

The specification work for this can be found [here](https://github.com/json-web-proofs/json-web-proofs).

## Supported Features


### JSON Web Keys (JWK)


JWK is defined in [RFC 7517](https://tools.ietf.org/html/rfc7517).

JWKs are currently used in the proof generation and verification of JWPs.

The tables below represent which `kty` and `crv` are supported at momement.

#### JWK Key Type


| Key Type | Support |
|:--------:|:-------:|
|   `OKP`  ||
|   `EC`   ||
|   `RSA`  ||
|   `oct`  ||


>NOTE: Currently, the `OKP` implementation makes reference to [RFC 8037](https://datatracker.ietf.org/doc/html/rfc8037), but it may later be updated to point to the [draft](https://datatracker.ietf.org/doc/html/draft-ietf-cose-bls-key-representations) from the COSE WG, in order to support also BLS Elliptic Curve Keys (used in [BBS+](https://datatracker.ietf.org/doc/html/draft-irtf-cfrg-bbs-signatures)).

#### JWK Elliptic Curve

The standard list of Elliptic Curves can be found [here](https://www.iana.org/assignments/jose/jose.xhtml#web-key-elliptic-curve):

|  Curve Name | Support |
|:---------:|:-------:|
| `P-256` ||
|  `P-384`  ||
|  `P-521` ||
|   `secp256k1`  ||
| `Ed25519` ||
|  `Ed448`  ||
|  `X25519` ||
|   `X448`  ||


This list is made from the currenlty active draft mentioned before, in [section 2.2.3](https://datatracker.ietf.org/doc/html/draft-ietf-cose-bls-key-representations#section-2.2.3).

|  Curve Name | Support |
|:---------:|:-------:|
|  `Bls12381G2` ||
|  `Bls12381G1` ||
|  `Bls48581G2` ||
|  `Bls48581G2` ||

### JSON Web Proof Algorithms


The supported algorithm are defined in in the [JPA](https://datatracker.ietf.org/doc/html/draft-ietf-jose-json-proof-algorithms) specification.

> NOTE: Keep in mind that these specifications are in the early stages, and there is a high likelihood that they will undergo significant changes in the future.

#### Single Use

| Algorithm | Support | Remarks |
|:---------:|:-------:|:-------:|
|   `SU-ES256`   ||   Named [here](https://datatracker.ietf.org/doc/html/draft-ietf-jose-json-proof-algorithms#section-6.1.10)       |



#### BBS


These `alg` values are temporary and await an update to the official draft that will define names to support both ciphersuites specified in [BBS+](https://datatracker.ietf.org/doc/html/draft-irtf-cfrg-bbs-signatures-04#name-bls12-381-ciphersuites).:
- BBS_BLS12381G1_XMD:SHA-256_SSWU_RO_H2G_HM2S_
- BBS_BLS12381G1_XOF:SHAKE-256_SSWU_RO_H2G_HM2S_

| Algorithm | Support | Remarks |
|:---------:|:-------:|:-------:|
|    `BLS12381-SHA256`    ||         |
|    `BLS12381-SHAKE256`    ||         |
|    `BLS12381-SHA256-PROOF`    ||         |
|    `BLS12381-SHAKE256-PROOF`    ||         |

#### MAC


These are defined [here](https://datatracker.ietf.org/doc/html/draft-ietf-jose-json-proof-algorithms#section-6.3.9):

| Algorithm | Support | Remarks |
|:---------:|:-------:|:-------:|
|    `MAC-H256`    ||         |
|    `MAC-H384`    ||         |
|    `MAC-H512`    ||         |
|    `MAC-K25519`    ||         |
|    `MAC-K448`    ||         |
|    `MAC-H256K`    ||         |


### JSON Web Proof Serialization


| Format         | Support |
|:----------------:|:---------:|
| Compact        ||
| JSON   ||










## Getting Started

<!-- What are the steps required to install your project? Provide a step-by-step description of how to get the development environment running. -->


### Requirements


- [Rust](https://www.rust-lang.org/) (>= 1.65)
- [Cargo](https://doc.rust-lang.org/cargo/) (>= 1.65)


### Usage


Add this to your Cargo.toml:

```
[dependencies]
json-proof-token = "0.1.9"
```

### Example

Take a look at the [examples](https://github.com/Cybersecurity-LINKS/json-proof-token/tree/main/examples).

## Decoder


[Here](https://github.com/Cybersecurity-LINKS/json-proof-token/tree/main/decoder) you can find a simple decoder for JSON Proof Tokens.

## Tests


TBD