RFC Errata
RFC 7520, "Examples of Protecting Content Using JSON Object Signing and Encryption (JOSE)", May 2015
Source of RFC: jose (sec)
Errata ID: 7680
Status: Reported
Type: Technical
Publication Format(s) : TEXT
Reported By: Filip Skokan
Date Reported: 2023-10-17
Section 5.9 says:
This example illustrates encrypting content that is first compressed. It reuses the AES symmetric key, key encryption algorithm, and content encryption algorithm from Section 5.8. Note that whitespace is added for readability as described in Section 1.1.
It should say:
This example illustrates encrypting content that is first compressed. It reuses the AES symmetric key, key encryption algorithm, and content encryption algorithm from Section 5.8. Note that DEFLATE [RFC1951] is not a deterministic algorithm; its implementations must properly round-trip but are not required to produce the same compressed data; it might not be possible to exactly replicate the results in this section. Note that whitespace is added for readability as described in Section 1.1.
Notes:
This added text is aligned with other non-deterministic algorithms in sections 4.2, 4.3, 5.1, 5.2, 5.13, and 6. It gives the reader a heads up that the results might not be replicable, e.g. when using a modern zlib deflate implementation which uses ANZAC++ hash in favour of hardware accelerated hashing function (i.e. CRC32) to insert symbols in the dictionary during compression.