Cryptographic standards that should be used
Symmetric encryption | Asymmetric encryption | Signingature |
---|---|---|
AES/GCM/PKCS5Padding or AES/GCM/NOPadding
(Many platforms allow only the second type of transformation) | RSA/ECB/OAEPWITHSHA-256ANDMGF1PADDING | Alg: RS256 |
Request blocks (identity blocks) | Secret key (request session key) | Signature header (JWS) |
For generating the HMAC please use SHA256
When generating the Thumbprint (and any other hash) use the HEXADECIMAL representation of the hash.
Certificate formats
The Fayda public certificate will be given to you in PEM format.
When signing your requests you should add your own public certificate in the header of the signature itself (x5c parameter) in x.509 standard