In inverse order:
- Some people do not like/use the standards he co-wrote
- Cryptography
- JWT is a standard for giving someone a token for them to later do something on your service (and signing them so you can be sure the token's all right when it comes back to you) -- you get a demo at https://jwt.io/
- JWS is the part of JWT that deals with encryption
- COSE is further complications on top of JOSE to fix some of its footguns
- JOSE is the framework for how to use JWT, JWS and related standards, which has some obvious footguns
- Cryptography
- JWT is a standard for giving someone a token for them to later do something on your service (and signing them so you can be sure the token's all right when it comes back to you) -- you get a demo at https://jwt.io/
- JWS is the part of JWT that deals with encryption
- COSE is further complications on top of JOSE to fix some of its footguns
- JOSE is the framework for how to use JWT, JWS and related standards, which has some obvious footguns
- shrug
- Yes