RFC Errata
Found 2 records.
Status: Verified (1)
RFC 8588, "Personal Assertion Token (PaSSporT) Extension for Signature-based Handling of Asserted information using toKENs (SHAKEN)", May 2019
Source of RFC: stir (art)
Errata ID: 6656
Status: Verified
Type: Technical
Publication Format(s) : TEXT
Reported By: Rob Thomas
Date Reported: 2021-08-10
Verifier Name: Orie Steele
Date Verified: 2024-11-15
Section 6 says:
Protected Header
{
"alg":"ES256",
"typ":"passport",
"ppt":"shaken",
"x5u":"https://cert.example.org/passport.cer"
}
Payload
{
"attest":"A"
"dest":{"tn":["12155550131"]}
"iat":"1443208345",
"orig":{"tn":"12155550121"},
"origid":"123e4567-e89b-12d3-a456-426655440000"
}
It should say:
Protected Header
{
"alg":"ES256",
"typ":"passport",
"ppt":"shaken",
"x5u":"https://cert.example.org/passport.cer"
}
Payload
{
"attest":"A"
"dest":{"tn":["12155550131"]}
"iat":1443208345,
"orig":{"tn":"12155550121"},
"origid":"123e4567-e89b-12d3-a456-426655440000"
}
Notes:
As per RFC8225 (5.1.1), 'iat' is a NumericDate format, which is a number (commonly referred to as a utime). Section 9.4 also specifies that anything that is numeric must be encoded as a number.
Status: Reported (1)
RFC 8588, "Personal Assertion Token (PaSSporT) Extension for Signature-based Handling of Asserted information using toKENs (SHAKEN)", May 2019
Source of RFC: stir (art)
Errata ID: 8414
Status: Reported
Type: Editorial
Publication Format(s) : TEXT
Reported By: Chris Wendt
Date Reported: 2025-05-13
Section 12.1 says:
https://access.atis.org/apps/group_public/download.php/32237/ATIS-1000074.pdf
It should say:
https://access.atis.org/apps/group_public/download.php/67436/ATIS-1000074.v003.pdf
Notes:
Updating an outdated link to the v003 version of ATIS-1000074, the original link is no longer active as well.