PastWipe S.L.

Marbella Malaga Spain info@pastwipe.com

NRU specifies one-time, cryptographically bound tokens that couple a dataset identifier to a requester context. Replayed or stolen datasets fail verification in the RepSec layer, preventing unauthorized reuse.

Introduction NRU binds a one-time verification token to four inputs:

• dataset_id
• requester_id
• ts (issuance time)
• nonce (random)

Stolen copies fail verification because tokens are single-use and time-bound.

Requirements Implementations MUST satisfy these requirements:

• Generate signed one-time tokens.
• Validate freshness and reject reuse.
• Consult revocation lists for compromised tokens.

Token Format COSE_Sign1 payload fields are defined as follows.

dataset_id

tstr or bstr.

requester_id

tstr.

ts

int (UNIX time).

nonce

bstr (96-bit).

exp

int (absolute expiry).

Ed25519 signatures are RECOMMENDED.

Verification and Revocation Verifiers MUST check signature validity, single-use, freshness, and absence on a signed revocation manifest.

Security Considerations TLS 1.3 is RECOMMENDED for transport. Reliable time sources are REQUIRED.

IANA Considerations No IANA actions.

Normative References