Key URI Specification v1

>URL: https://openwebstandard.org/rfc4

Key URI format:
```
key://<name>:<type>/<algorithm>:<usage>:<key-material>
```

| Key | Comments |
| ---- | ---------- |
| `<name>` | Key name/host |
| `<type>` |  Enums `se`, `piv`, `soft`, `external_command` |
| `<algorithm>` | Enums `rsa1024`, `rsa2048`, `rsa3072`, `rsa4096`, `p256`, `p384`, `p521`  |
| `<usage>` | Enums ` `(empty), `*`(Any), `signing` , `key_agreement` |
| `<key-material>` | string, may encrypted with HMAC or PBE  |

HMAC encryption:
```
hmac_enc:<hmac-nonce>:<aes-gcm-nonce>:<ciphertext>
```
> HMAC encryption use YubiKey derive encryption key, `<aes-key> = SHA256(HMAC_SHA1(YubiKey, <hmac-nonce>))`

PBE encryption:
```
pbe_enc:<iteration>:<pbe-salt>:<aes-gcm-nonce>:<ciphertext>
```
> PBE encryption use Simple PBE KDF

Samples:
```
key://yubikey4-5010220:piv/p256::r1
```
```
key://macbook:se/p256:signing:BIIBQDGCATwwgfU******
```
```
key://yubikey4-5010220:soft/p256::hmac_enc:oU7d7qT0BOJb_1FOxr5-Rg:KDEY7gWme3CXldlcCg7WGg:YbdugT*****
```


Key	Comments
`<name>`	Key name/host
`<type>`	Enums `se`, `piv`, `soft`, `external_command`
`<algorithm>`	Enums `rsa1024`, `rsa2048`, `rsa3072`, `rsa4096`, `p256`, `p384`, `p521`
`<usage>`	Enums (empty), `*`(Any), `signing` , `key_agreement`
`<key-material>`	string, may encrypted with HMAC or PBE

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Key URI Specification v1 #4

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Key URI Specification v1 #4

Description

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions