#JWT
3 articles
Application
2026-06-25
Cryptography in Practice: TLS, JWT, and SSH
How everyday protocols such as TLS, JWT/JWS, and SSH combine symmetric keys, public keys, signatures, key exchange, and PKI, viewed through the three uses of a public key and backed by RFCs. The final part of a three-part cryptography series.
#TLS#JWT#SSH#Authentication#Security
Application
2026-06-25
Three Uses of a Public Key: Signing, Encryption, and Key Exchange
A public key has just three uses: signing, encryption, and key exchange. This article sorts real-world applications such as SSH public-key auth, WebAuthn, mTLS, private_key_jwt, code signing, and container signing into these three, and clarifies how they differ from shared-key schemes such as HMAC, with primary sources.
#Public Key Cryptography#Digital Signature#Authentication#Security#JWT#WebAuthn#OAuth#PKI
Application
2020-09-11
What is JWT? JSON Web Tokens Explained for Secure API Authentication
Learn how JSON Web Tokens (JWT) work—header, payload, signature structure—how to use JWTs for stateless API authentication, and common security pitfalls to avoid.
#JWT