Comments (3)
Geal
commented on July 28, 2024
the private key they get in the last block as not been used to sign anything yet.
let's say you have a 2-block token. You get:
Block 1:
- data 1
- public key 1
- signature = sign(root private key, data 1 + public key 1)
Block 2:
- data 2
- public key 2
- signature = sign(private key 1, data 2 + public key 2)
Last block:
- private key 2
When verifying a token, we check that the chain of signatures is ok, and the last step is verifying that the private key in the last block matches the public key signed in the preceding block.
If the last block is not present, verification will fail. If the private key does not match (because the preceding block was removed or modified), verification will fail too
from biscuit.
twitchyliquid64
commented on July 28, 2024
Ahhh, that makes sense. Thanks!
from biscuit.
Geal
commented on July 28, 2024
There's now some docs describing the crypto: https://www.biscuitsec.org/docs/reference/cryptography/
from biscuit.
Related Issues (20)
- DID / DPKI integration HOT 5
- Suggested clarification on "Biscuit is a bearer token" HOT 2
- fix authorizer serialization
- check all / check unless behaviour HOT 3
- Question regarding the language specification about Sets HOT 2
- separate v2 and v3 samples HOT 1
- specify operator precedence
- Date & time manipulation
- indicate clearly that URL safe base64 encoding is preferred HOT 1
- Laziness of boolean operators HOT 3
- Heterogeneous `==` HOT 1
- Dates: TAI64, TAI or UTC? HOT 2
- Purpose of the `Parens` op HOT 2
- `.type()` function
- Add array and map types HOT 1
- Biscuit web key sets HOT 7
- Forgotten symbol in samples.json? HOT 2
- Webauthn signatures
- Allow heterogeneous sets
- `reject if` HOT 4
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from biscuit.