Skip to content

Commit

Permalink
Update draft-ietf-cose-hash-envelope.md
Browse files Browse the repository at this point in the history 
Co-authored-by: Henk Birkholz <[email protected]>
  • Loading branch information
@SteveLasker @henkbirkholz
SteveLasker and henkbirkholz authored Feb 19, 2025
1 parent 67c1466 commit ce4daa8
Showing 1 changed file with 1 addition and 1 deletion.
2 changes: 1 addition & 1 deletion draft-ietf-cose-hash-envelope.md
View file
Original file line number Diff line number Diff line change
Expand Up @@ -161,7 +161,7 @@ The signature is produced using ES384 which means using ECDSA with SHA384 hash f

This example is chosen to highlight that an existing system may use a hash algorithm such as sha256.
This hash becomes the payload of a cose-sign1.
When signed with a signature algorithm that is paramaterized by hash function, such as ECDSA with SHA384, the to be signed structure as described in Section 4.4 of RFC9052.
When signed with a signature algorithm that is parameterized via a hash function, such as ECDSA with SHA384, the to be signed structure as described in Section 4.4 of RFC9052.

The resulting signature is over the protected header and payload, providing integrity and authenticity for the hash algorithm, content type and location of the associated resource, in this case a software bill of materials.

Expand Down

0 comments on commit ce4daa8

Please sign in to comment.