RFC Errata
Found 1 record.
Status: Reported (1)
RFC 8588, "Personal Assertion Token (PaSSporT) Extension for Signature-based Handling of Asserted information using toKENs (SHAKEN)", May 2019
Source of RFC: stir (art)
Errata ID: 6656
Status: Reported
Type: Technical
Publication Format(s) : TEXT
Reported By: Rob Thomas
Date Reported: 2021-08-10
Section 6 says:
Protected Header { "alg":"ES256", "typ":"passport", "ppt":"shaken", "x5u":"https://cert.example.org/passport.cer" } Payload { "attest":"A" "dest":{"tn":["12155550131"]} "iat":"1443208345", "orig":{"tn":"12155550121"}, "origid":"123e4567-e89b-12d3-a456-426655440000" }
It should say:
Protected Header { "alg":"ES256", "typ":"passport", "ppt":"shaken", "x5u":"https://cert.example.org/passport.cer" } Payload { "attest":"A" "dest":{"tn":["12155550131"]} "iat":1443208345, "orig":{"tn":"12155550121"}, "origid":"123e4567-e89b-12d3-a456-426655440000" }
Notes:
As per RFC8225 (5.1.1), 'iat' is a NumericDate format, which is a number (commonly referred to as a utime). Section 9.4 also specifies that anything that is numeric must be encoded as a number.