Integer value for the CBOR Object Signing and Encryption (COSE) key identifier

Many Internet of Things (IoT) deployments require technologies which are highly performant in constrained environments . The connectivity for these settings may exhibit extremely restricted bandwidth constraints, for which byte level optimizations are motivated, see . The use of CBOR enables a compact encoding of protected data as COSE objects , which is a basic building block in various IoT security settings such as CWT , OSCORE , and ACE-OAuth . COSE defines the key identifier parameter kid used to identify keys used in the COSE object. The value of the kid parameter is specified to be encoded as a CBOR byte string, which (with the exception of the empty string) requires at least two bytes on the wire. For comparison, CBOR encoding of small integers (-24, …, 23) need only one byte on the wire. Since many IoT deployments may use local identifiers for which a few unique identifiers are sufficient, the use of CBOR integers as key identifiers would reduce the overhead due to transport of COSE objects. This specification amends this limitation by extending the COSE parameter kid to allow CBOR integer values. kid is used in different instances, which all need to be extended to CBOR int encoding: The kid COSE header parameter, see . The kid COSE Key Common Parameter, see . The kid CWT Confirmation Method, see .

There are no additional security considerations compared to key identifiers to being byte strings.

IANA has extended the Value Type of kid in the “COSE Header Parameters” registry under the group name “CBOR Object Signing and Encryption (COSE)” to also allow the Value Type int. The resulting Value Type is bstr / int. The Value Registry for this item is empty and omitted from the table below.

IANA has extended the Value Type of kid in the “COSE Key Common Parameters” registry under the group name “CBOR Object Signing and Encryption (COSE)” to also allow the Value Type int. The resulting Value Type is bstr / int. The Value Registry for this item is empty and omitted from the table below.

IANA has extended the Value Type of kid in the “CWT Confirmation Methods” registry under the group name “CBOR Web Token (CWT) Claims” to also allow the Value Type int. The resulting Value Type is bstr / int. The Value Registry for this item is empty and omitted from the table below.