dane_jwe_jws
A library for using JWE and JWS with DANE for identity-secured messaging.
This library enables the easy generation of signed and encrypted messages,
using TLSA records in DNS for public key discovery. This library places the
DNS URI in the x5u protected header field. The receiving party uses this
field for discovering the public key which is used for verifying message
payload.
Note: Currently, only RSA public keys are supported (RSA-OAEP-256 for encryption and RS256 for signing)
Quick Start
Installation
pip install dane-jwe-jws
Encrypt a message using a DANE-represented identity
from dane_jwe_jws.encryption import Encryption
test_message = "hello world!!"
identity_name = "dns.name.where.cert.lives.in.a.tlsa.record"
encrypted = Encryption.encrypt(test_message, identity_name)
print(encrypted)
![dependabot[bot]](https://avatars.githubusercontent.com/u/49699333?size=120)