The proof-of-possession key can be passed by reference instead of being passed by value. This is done using the “jku” member. Its value is a URI that refers to a resource for a set of JSON-encoded public keys represented as a JWK Set, one of which is the proof-of-possession key. (RFC 7800: Proof-of-Possession Key Semantics for JSON Web Tokens (JWTs))


Return to list of all ( JWT Confirmation Methods | Web Concepts )