Skip to main content

Public Key Authenticated Encryption for JOSE: ECDH-1PU

Document Type Expired Internet-Draft (individual)
Expired & archived
Author Neil Madden
Last updated 2021-11-08 (Latest revision 2021-05-06)
RFC stream (None)
Intended RFC status (None)
Stream Stream state (No stream defined)
Consensus boilerplate Unknown
RFC Editor Note (None)
IESG IESG state Expired
Telechat date (None)
Responsible AD (None)
Send notices to (None)

This Internet-Draft is no longer active. A copy of the expired Internet-Draft is available in these formats:


This document describes the ECDH-1PU public key authenticated encryption algorithm for JWE. The algorithm is similar to the existing ECDH-ES encryption algorithm, but adds an additional ECDH key agreement between static keys of the sender and recipient. This additional step allows the recipient to be assured of sender authenticity without requiring a nested signed-then-encrypted message structure.


Neil Madden

(Note: The e-mail addresses provided for the authors of this Internet-Draft may no longer be valid.)