<?xml version="1.0" encoding="UTF-8"?>
<rss xmlns:content="http://purl.org/rss/1.0/modules/content/" xmlns:dc="http://purl.org/dc/elements/1.1/" xmlns:rdf="http://www.w3.org/1999/02/22-rdf-syntax-ns#" xmlns:taxo="http://purl.org/rss/1.0/modules/taxonomy/" version="2.0">
  <channel>
    <title>topic Re: Understanding Adobe I/O token encryption for ACS serv... in Adobe Campaign Standard Questions</title>
    <link>https://experienceleaguecommunities.adobe.com/t5/adobe-campaign-standard/understanding-adobe-i-o-token-encryption-for-acs-services/m-p/402646#M886</link>
    <description>&lt;P&gt;Hi Ramon, Makes sense indeed, thank you!&lt;/P&gt;</description>
    <pubDate>Tue, 06 Apr 2021 07:44:22 GMT</pubDate>
    <dc:creator>xavierv6303633</dc:creator>
    <dc:date>2021-04-06T07:44:22Z</dc:date>
    <item>
      <title>Understanding Adobe I/O token encryption for ACS services</title>
      <link>https://experienceleaguecommunities.adobe.com/t5/adobe-campaign-standard/understanding-adobe-i-o-token-encryption-for-acs-services/m-p/401497#M884</link>
      <description>&lt;P&gt;Hello,&lt;/P&gt;&lt;P&gt;&amp;nbsp;&lt;/P&gt;&lt;P&gt;We're implementing transactional messaging in ACS, and have just set up the JWT Authentication in Adobe I/O. The way the encryption happens for the JWT seems strange to me, and I was wondering if anyone could help clarify this?&lt;/P&gt;&lt;P&gt;&amp;nbsp;&lt;/P&gt;&lt;P&gt;In any other 'normal' instances, like let's say an encrypted PGP file sent from a client to ACC, it is the client (the sender) who encrypts the file using a public key, and ACC (the recipient) who decrypts it using its private key.&lt;/P&gt;&lt;P&gt;&amp;nbsp;&lt;/P&gt;&lt;P&gt;With the Adobe I/O JWT exchange, it is the opposite : the client needs to encrypt it with a private key, and Adobe decrypts it with a public key. So we need to ask the client to generate a key pair and send us the public key, which is kind of strange. My client was asking about this behaviour, and I couldn't answer because it seems like the wrong logic to me too.&lt;/P&gt;&lt;P&gt;&amp;nbsp;&lt;/P&gt;&lt;P&gt;Can someone shed some light on this please? Every article I find on this topic says the same : "&lt;SPAN&gt;The public key is verified with the client and the private key used in the&amp;nbsp;&lt;/SPAN&gt;&lt;STRONG&gt;decryption&lt;/STRONG&gt;&lt;SPAN&gt;&amp;nbsp;process".&lt;/SPAN&gt;&lt;/P&gt;&lt;P&gt;&amp;nbsp;&lt;/P&gt;&lt;P&gt;&lt;SPAN&gt;Thank you!&lt;/SPAN&gt;&lt;/P&gt;&lt;P&gt;&lt;SPAN&gt;Xavier&lt;/SPAN&gt;&lt;/P&gt;</description>
      <pubDate>Thu, 25 Mar 2021 13:59:44 GMT</pubDate>
      <guid>https://experienceleaguecommunities.adobe.com/t5/adobe-campaign-standard/understanding-adobe-i-o-token-encryption-for-acs-services/m-p/401497#M884</guid>
      <dc:creator>xavierv6303633</dc:creator>
      <dc:date>2021-03-25T13:59:44Z</dc:date>
    </item>
    <item>
      <title>Re: Understanding Adobe I/O token encryption for ACS serv...</title>
      <link>https://experienceleaguecommunities.adobe.com/t5/adobe-campaign-standard/understanding-adobe-i-o-token-encryption-for-acs-services/m-p/402619#M885</link>
      <description>&lt;P&gt;You may refer to below article. JWT is about signing and not encrypting.&lt;/P&gt;&lt;P&gt;&lt;A href="https://stackoverflow.com/questions/454048/what-is-the-difference-between-encrypting-and-signing-in-asymmetric-encryption" target="_blank"&gt;https://stackoverflow.com/questions/454048/what-is-the-difference-between-encrypting-and-signing-in-asymmetric-encryption&lt;/A&gt;&lt;/P&gt;</description>
      <pubDate>Mon, 05 Apr 2021 21:15:23 GMT</pubDate>
      <guid>https://experienceleaguecommunities.adobe.com/t5/adobe-campaign-standard/understanding-adobe-i-o-token-encryption-for-acs-services/m-p/402619#M885</guid>
      <dc:creator>ramon_bisswanger</dc:creator>
      <dc:date>2021-04-05T21:15:23Z</dc:date>
    </item>
    <item>
      <title>Re: Understanding Adobe I/O token encryption for ACS serv...</title>
      <link>https://experienceleaguecommunities.adobe.com/t5/adobe-campaign-standard/understanding-adobe-i-o-token-encryption-for-acs-services/m-p/402646#M886</link>
      <description>&lt;P&gt;Hi Ramon, Makes sense indeed, thank you!&lt;/P&gt;</description>
      <pubDate>Tue, 06 Apr 2021 07:44:22 GMT</pubDate>
      <guid>https://experienceleaguecommunities.adobe.com/t5/adobe-campaign-standard/understanding-adobe-i-o-token-encryption-for-acs-services/m-p/402646#M886</guid>
      <dc:creator>xavierv6303633</dc:creator>
      <dc:date>2021-04-06T07:44:22Z</dc:date>
    </item>
  </channel>
</rss>

