JOSE (JWA+JWK) / ECMA (ES6) Signature Sample & Validator

The following shows an enhanced version of JCS making better use of the time proven JOSE stack.

The validator currently only works with Chrome and Firefox due to some yet unresolved issues with WebCrypto.

{ "now": "2017-04-12T09:22:36Z", "escapeMe": "\u20ac$\u000F\u000aA'\u0042\u0022\u005c\\\"\/", "numbers": [1e+30,4.5,6], "signature": { "algorithm": "ES256", "publicKey": { "kty": "EC", "crv": "P-256", "x": "mPUKT_bAWGHIhg0TpjjqVsP1rXWQu_vwVOHHtNkdYoA", "y": "8BQAsImGeAS46fyWw5MhYfGTT0IjBpFw2SS34Dv4Irs" }, "value": "lg0wcJSBpHnr4zUP4bLwBtTHhHMWP_xlFyYUjNsLzKxWbsC_1bmUjlegQ91TYEZ3xyMIPYmswtmoW9SSYNc7Pg" } }

Waiting for validation command

Worth noting: Both the Data and the Header are provided in Clear text (everything but the value property and whitespace is signed) "Canonicalization" is reduced to JSON.stringify() thanx to ES6 serialization The publicKey is featured in a JWK The signed object is fully compatible with JavaScript making it usable in browsers as well

No, this is NOT a full blown signature validator; it is just the bare bones. By design :-)

Version 0.3, 2017-04-14, WebPKI.org