JSON Web Encryption
E700378
JSON Web Encryption (JWE) is a standard for securely encrypting arbitrary data as JSON-based tokens, commonly used in modern web security protocols and identity frameworks.
Statements (50)
| Predicate | Object |
|---|---|
| instanceOf |
IETF standard
ⓘ
encryption format ⓘ web security standard ⓘ |
| abbreviation | JWE NERFINISHED ⓘ |
| category | application-layer security ⓘ |
| component |
JWE Authentication Tag
ⓘ
JWE Ciphertext NERFINISHED ⓘ JWE Encrypted Key NERFINISHED ⓘ JWE Header NERFINISHED ⓘ JWE Initialization Vector NERFINISHED ⓘ |
| definedInRFC | RFC 7516 NERFINISHED ⓘ |
| fullName | JSON Web Encryption NERFINISHED ⓘ |
| governingBody | Internet Engineering Task Force NERFINISHED ⓘ |
| headerField |
alg
ⓘ
cty ⓘ enc ⓘ kid ⓘ typ ⓘ zip ⓘ |
| partOf | JOSE NERFINISHED ⓘ |
| primaryPurpose |
represent encrypted content as JSON-based tokens
ⓘ
securely encrypt arbitrary data ⓘ |
| provides |
authentication
ⓘ
confidentiality ⓘ integrity ⓘ |
| publicationYear | 2015 ⓘ |
| relatedStandard |
JSON Web Key
NERFINISHED
ⓘ
JSON Web Signature NERFINISHED ⓘ JSON Web Token NERFINISHED ⓘ |
| serializationForm |
Compact Serialization
ⓘ
JSON Serialization ⓘ |
| supports |
authenticated encryption
ⓘ
content encryption ⓘ integrity protection ⓘ key management ⓘ |
| supportsContentEncryptionAlgorithmType |
AES CBC with HMAC
ⓘ
AES GCM NERFINISHED ⓘ |
| supportsKeyManagementAlgorithmType |
asymmetric key encryption
ⓘ
direct key agreement ⓘ key agreement with key wrapping ⓘ key wrapping ⓘ symmetric key encryption ⓘ |
| usedFor |
protecting claims in JSON Web Tokens
ⓘ
secure transmission of sensitive data in APIs ⓘ |
| usedIn |
OAuth 2.0 ecosystems
ⓘ
OpenID Connect ecosystems NERFINISHED ⓘ identity frameworks ⓘ web security protocols ⓘ |
| usesDataFormat | JSON NERFINISHED ⓘ |
| usesEncoding | Base64url encoding ⓘ |
Referenced by (1)
Full triples — surface form annotated when it differs from this entity's canonical label.