RFC Errata
RFC 8152, "CBOR Object Signing and Encryption (COSE)", July 2017
Note: This RFC has been obsoleted by RFC 9052, RFC 9053
Source of RFC: cose (sec)
Errata ID: 5533
Status: Held for Document Update
Type: Editorial
Publication Format(s) : TEXT
Reported By: Jian Huang
Date Reported: 2018-10-18
Held for Document Update by: Benjamin Kaduk
Date Held: 2018-10-19
Section 3.1 says:
alg: This parameter is used to indicate the algorithm used for the security processing. This parameter MUST be authenticated where the ability to do so exists. This support is provided by AEAD algorithms or construction (COSE_Sign, COSE_Sign0, COSE_Mac, and COSE_Mac0).
It should say:
alg: This parameter is used to indicate the algorithm used for the security processing. This parameter MUST be authenticated where the ability to do so exists. This support is provided by AEAD algorithms or construction (COSE_Sign, COSE_Sign1, COSE_Mac, and COSE_Mac0).
Notes:
COSE_Sign0 is only mentioned once in the document, but COSE_Sign1 appears many times.