Category Archives: JOSE

Android developers, rejoice!

The latest 2.24 release of the Nimbus JOSE + JWT library removes the Apache Commons Codec dependency for base 64 and base 64 URL-safe encoding / decoding, by switching to an internal codec (from the migbase64 project). This should greatly ease use of the library on Android devices.

Thanks to everyone who contributed with patches and suggestions (and endured the long wait J ).

The new release should reach Maven Central by the end of today. Alternatively, you can get a copy of the library JAR from the download section of the git repo.

Encrypt and you shall be protected, says Snowden

From Edward Snowden’s Q&A session at the Guardian:

Q: Is encrypting my email any good at defeating the NSA survelielance? Id my data protected by standard encryption?

Snowden: Encryption works. Properly implemented strong crypto systems are one of the few things that you can rely on. Unfortunately, endpoint security is so terrifically weak that NSA can frequently find ways around it.

One more good reason to use the Nimbus library for JavaScript Object Signing and Encryption (JOSE+JWT) 🙂