RFC 7800
Proof-of-Possession Key Semantics for JSON Web Tokens (JWTs), April 2016
- File formats:
- Status:
- PROPOSED STANDARD
- Authors:
- M. Jones
J. Bradley
H. Tschofenig - Stream:
- IETF
- Source:
- oauth (sec)
Cite this RFC: TXT | XML | BibTeX
DOI: https://doi.org/10.17487/RFC7800
Discuss this RFC: Send questions or comments to the mailing list oauth@ietf.org
Other actions: View Errata | Submit Errata | Find IPR Disclosures from the IETF | View History of RFC 7800
Abstract
This specification describes how to declare in a JSON Web Token (JWT) that the presenter of the JWT possesses a particular proof-of- possession key and how the recipient can cryptographically confirm proof of possession of the key by the presenter. Being able to prove possession of a key is also sometimes described as the presenter being a holder-of-key.
For the definition of Status, see RFC 2026.
For the definition of Stream, see RFC 8729.