%% You should probably cite rfc9201 instead of this I-D. @techreport{ietf-ace-oauth-params-13, number = {draft-ietf-ace-oauth-params-13}, type = {Internet-Draft}, institution = {Internet Engineering Task Force}, publisher = {Internet Engineering Task Force}, note = {Work in Progress}, url = {https://datatracker.ietf.org/doc/draft-ietf-ace-oauth-params/13/}, author = {Ludwig Seitz}, title = {{Additional OAuth Parameters for Authorization in Constrained Environments (ACE)}}, pagetotal = 11, year = 2020, month = apr, day = 29, abstract = {This specification defines new parameters and encodings for the OAuth 2.0 token and introspection endpoints when used with the framework for authentication and authorization for constrained environments (ACE). These are used to express the proof-of-possession key the client wishes to use, the proof-of-possession key that the Authorization Server has selected, and the key the Resource Server uses to authenticate to the client.}, }