Stream: implementers
Topic: JSON signatures guidance
John Moehrke (Jun 14 2017 at 12:31):
The Security wg maintains the Signature datatype, we have explained a bit about XML-Signature and have been asked to provide similar guidance on JSON signatures. This is signatures that are signing some FHIR Resources, and would show up in the Signature datatype in Bundle or Provenance. I would like to invite comment here that we can use to create this guidance. This guidance is not trying to address the larger issue relative to the dynamics of FHIR (See http://wiki.hl7.org/index.php?title=FHIR_Digital_Signature_Working_Page). We only want some guidance on how one might use JWS, likely in Detached mode https://tools.ietf.org/html/rfc7515#appendix-F. See GF#13238
Last updated: Apr 12 2022 at 19:14 UTC
