git Service of IN-Ulm e.V. Explore Help
Sign In
cbiedl
/
jose
1
0
Fork 0
Files
Tree: 26d0044aa8
Branches Tags
jose
/
doc
/
ronn
/
jose-jwk-exc.1

jose-jwk-exc.1 2.6 KB
History Raw

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768697071727374757677787980818283848586878889909192 
  1. .\" generated with Ronn/v0.7.3
    2. 

  2. .\" http://github.com/rtomayko/ronn/tree/0.7.3
    3. 

  3. .
    4. 

  4. .TH "JOSE\-JWK\-EXC" "1" "June 2017" "" ""
    5. 

  5. .
    6. 

  6. .SH "NAME"
    7. 

  7. \fBjose\-jwk\-exc\fR \- Performs a key exchange using the two input keys
    8. 

  8. .
    9. 

  9. .SH "SYNOPSIS"
    10. 

  10. \fBjose jwk exc\fR [\-i JWK] \-l JWK \-r JWK [\-o JWK]
    11. 

  11. .
    12. 

  12. .SH "OVERVIEW"
    13. 

  13. The \fBjose jwk exc\fR command performs a key exchange using the two input keys and provides the result of the exchange as output\. The user can specify a JWK template as input and the specified properties will appear in the output JWK unmodified\.
    14. 

  14. .
    15. 

  15. .P
    16. 

  16. A key exchange requires two keys:
    17. 

  17. .
    18. 

  18. .IP "1." 4
    19. 

  19. The local key, which usually contains private key material\.
    20. 

  20. .
    21. 

  21. .IP "2." 4
    22. 

  22. The remote key, which usually contains public key material\.
    23. 

  23. .
    24. 

  24. .IP "" 0
    25. 

  25. .
    26. 

  26. .P
    27. 

  27. The algorithm for the exchange is inferred from the inputs\.
    28. 

  28. .
    29. 

  29. .P
    30. 

  30. The \fBECDH\fR algorithm performs a standard elliptic curve multiplication such that the public value of \ep rem is multiplied by the private value of \ep\.
    31. 

  31. .
    32. 

  32. .P
    33. 

  33. The \fBECMR\fR algorithm has three modes of operation\. Where the local key has a private key (the "d" property), it performs exactly like \fBECDH\fR\. If the local key does not have a private key and the remote key does have a private key, elliptic curve addition is performed on the two values\. Otherwise, if neither the local key nor the remote key have a private key, the remote key is subtracted from the local key using elliptic curve subtraction\. When using ECMR, be sure to validate the content of your inputs to avoid triggering the incorrect operation!
    34. 

  34. .
    35. 

  35. .SH "OPTIONS"
    36. 

  36. .
    37. 

  37. .TP
    38. 

  38. \fB\-i\fR \fIJSON\fR, \fB\-\-input\fR=\fIJSON\fR
    39. 

  39. Parse JWK template from JSON
    40. 

  40. .
    41. 

  41. .TP
    42. 

  42. \fB\-i\fR \fIFILE\fR, \fB\-\-input\fR=\fIFILE\fR
    43. 

  43. Read JWK template from FILE
    44. 

  44. .
    45. 

  45. .TP
    46. 

  46. \fB\-i\fR \-, \fB\-\-input\fR=\-
    47. 

  47. Read JWK template from standard input
    48. 

  48. .
    49. 

  49. .TP
    50. 

  50. \fB\-o\fR \fIFILE\fR, \fB\-\-output\fR=\fIFILE\fR
    51. 

  51. Write JWK(Set) to FILE
    52. 

  52. .
    53. 

  53. .TP
    54. 

  54. \fB\-o\fR \-, \fB\-\-output\fR=\-
    55. 

  55. Write JWK(Set) to standard input
    56. 

  56. .
    57. 

  57. .TP
    58. 

  58. \fB\-l\fR \fIFILE\fR, \fB\-\-local\fR=\fIFILE\fR
    59. 

  59. Read local JWK from FILE
    60. 

  60. .
    61. 

  61. .TP
    62. 

  62. \fB\-l\fR \-, \fB\-\-local\fR=\-
    63. 

  63. Read local JWK from standard input
    64. 

  64. .
    65. 

  65. .TP
    66. 

  66. \fB\-r\fR \fIFILE\fR, \fB\-\-remote\fR=\fIFILE\fR
    67. 

  67. Read remote JWK from FILE
    68. 

  68. .
    69. 

  69. .TP
    70. 

  70. \fB\-r\fR \-, \fB\-\-remote\fR=\-
    71. 

  71. Read remote JWK from standard input
    72. 

  72. .
    73. 

  73. .SH "EXAMPLES"
    74. 

  74. Perform a key exchange:
    75. 

  75. .
    76. 

  76. .IP "" 4
    77. 

  77. .
    78. 

  78. .nf
    79. 

  79. 

  80. $ jose jwk gen \-i \'{"alg":"ECDH"}\' \-o local\.jwk
    81. 

  81. $ jose jwk gen \-i \'{"alg":"ECDH"}\' | jose jwk pub \-i\- \-o remote\.jwk
    82. 

  82. $ jose jwk exc \-l local\.jwk \-r remote\.jwk \-o exchanged\.jwk
    83. 

  83. .
    84. 

  84. .fi
    85. 

  85. .
    86. 

  86. .IP "" 0
    87. 

  87. .
    88. 

  88. .SH "AUTHOR"
    89. 

  89. Nathaniel McCallum <npmccallum@redhat\.com>
    90. 

  90. .
    91. 

  91. .SH "SEE ALSO"
    92. 

  92. \fBjose\-alg\fR(1), \fBjose\-jwk\-exc\fR(1), \fBjose\-jwk\-gen\fR(1), \fBjose\-jwk\-pub\fR(1)
    93.